398a242c87f1701d30aa8f050361cd8d_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

398a242c87f1701d30aa8f050361cd8d_JaffaCakes118
Size

811KB
MD5

398a242c87f1701d30aa8f050361cd8d
SHA1

b20e2eb8ca19ba0ba0b43eeca641ff9d0fdcc1db
SHA256

dc0d8cbf5cc31381c059ec7586898f5b77a5ea68bf6b086cb370e2fd49a2da8a
SHA512

53bd82c4dfc47037e94fe5496dafc3ae155ceee384fbf463f8a32fe15d3618c9079c12eba4ebffadef87262ddfcb377e0758e75bcc2b8600da062a2f7ebe05b9
SSDEEP

12288:WC26f9xA3O6qznBALRCtzTsdq8gp31MjjNYjLHl9auVf+BgxH:WCfVmJqzmdzgLMjjNYjTlsuVf0E

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
398a242c87f1701d30aa8f050361cd8d_JaffaCakes118

Files

398a242c87f1701d30aa8f050361cd8d_JaffaCakes118
.exe windows:5 windows x86 arch:x86

1c46bb743913a137123d53ad45b09513

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_ISOLATION
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
QueryPerformanceCounter
FreeLibrary
GetCurrentProcess
CreateFileW
GetVersionExA
lstrcmpiW
GetLastError
InitializeCriticalSection
GetSystemTimeAsFileTime
GetModuleFileNameA
GetSystemTimeAsFileTime
HeapFree
GetCurrentProcessId
GetModuleHandleW
DeleteCriticalSection
FreeLibrary
VirtualProtect
DeleteCriticalSection
GetModuleHandleW
LoadLibraryW
VirtualProtect
LeaveCriticalSection
SetLastError
GetModuleHandleW
InitializeCriticalSection
VirtualProtect
EnterCriticalSection
SetLastError
GetCurrentProcess
LeaveCriticalSection
HeapAlloc
GetLastError
QueryPerformanceCounter
GetModuleHandleW
GetModuleFileNameA
GetModuleHandleW
MultiByteToWideChar
MultiByteToWideChar
UnhandledExceptionFilter
GetModuleFileNameW
LeaveCriticalSection
InitializeCriticalSection
InterlockedIncrement
QueryPerformanceCounter
GetModuleHandleW
CreateEventW
EnterCriticalSection
GetProcessHeap
HeapAlloc
GetModuleFileNameA
CreateEventW
lstrcmpiW
GetProcessHeap
CloseHandle
QueryPerformanceCounter
GetProcessHeap
CreateThread
GetSystemTimeAsFileTime
LoadLibraryW
UnhandledExceptionFilter
GetCurrentProcessId
LocalAlloc
DeleteCriticalSection
VirtualProtect
GetModuleFileNameW
CreateFileW
ReadFile
InterlockedExchange
InterlockedDecrement
GetModuleHandleW
DisableThreadLibraryCalls
LoadLibraryW
GetProcessHeap
InterlockedCompareExchange
EnterCriticalSection
GetModuleFileNameW
InterlockedCompareExchange
GetVersionExA
CloseHandle
lstrlenA
GetModuleHandleW
GetModuleFileNameW
ReadFile
GetModuleFileNameA
DeleteCriticalSection
LocalAlloc
DeleteCriticalSection
VirtualProtect
GetProcessHeap
LoadLibraryA
QueryPerformanceCounter
CreateThread
VirtualProtect
CreateFileW
MultiByteToWideChar
InterlockedExchange
CreateFileW
FreeLibrary
VirtualProtect
LoadLibraryA
HeapFree

user32

SetForegroundWindow
KillTimer
GetSystemMetrics
CharNextW
GetDC
BeginPaint
GetParent
SetWindowPos
BeginPaint
LoadStringW
GetParent
SetTimer
GetDC
EndDialog
GetDC
GetDC
GetDlgItem
PostMessageW
LoadIconW
wsprintfA
TranslateMessage
SetForegroundWindow
SetCursor
GetFocus
IsWindow
InvalidateRect
GetDesktopWindow
BeginPaint
GetDlgItem
SetWindowPos
IsDlgButtonChecked
LoadCursorW
GetParent
LoadStringW
KillTimer
EnableWindow
SetDlgItemTextW
GetFocus
EndDialog
PostQuitMessage
DispatchMessageW
PostQuitMessage
GetWindowRect
SetFocus
SetWindowPos
SetFocus
GetDC
GetFocus
LoadIconW
SetDlgItemTextW
BeginPaint
PostQuitMessage
SetCursor
GetWindowLongW
SetWindowTextW
CreateWindowExW
LoadCursorW
SetWindowPos
GetFocus
GetFocus
SetDlgItemTextW
MessageBoxW
SetFocus
GetSystemMetrics
KillTimer
SetTimer
SetWindowTextW
LoadStringW
LoadCursorW
GetDesktopWindow
SetForegroundWindow
SendDlgItemMessageW
EndDialog
IsWindow
SetWindowTextW
EnableWindow
GetClientRect
LoadCursorW
LoadIconW
SetWindowLongW
SetWindowTextW
GetSysColor
ShowWindow
GetDlgItem
SetForegroundWindow
SetFocus
SetFocus
GetClientRect
DestroyWindow
SetTimer
TranslateMessage
EnableWindow
GetDC
GetWindowRect
ReleaseDC
SetWindowPos
DispatchMessageW
GetClientRect
InvalidateRect
KillTimer
SetWindowPos
LoadCursorW
SendMessageW
SetWindowPos
EnableWindow
DialogBoxParamW

Sections

.text
Size: 723KB - Virtual size: 976KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 82KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1c46bb743913a137123d53ad45b09513

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 723KB - Virtual size: 976KB

.data Size: - Virtual size: 4KB

.rdata Size: 5KB - Virtual size: 8KB

.rsrc Size: 82KB - Virtual size: 84KB

.text
Size: 723KB - Virtual size: 976KB

.data
Size: - Virtual size: 4KB

.rdata
Size: 5KB - Virtual size: 8KB

.rsrc
Size: 82KB - Virtual size: 84KB