39f75c1dd4d369218878d0ef18580e12_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

39f75c1dd4d369218878d0ef18580e12_JaffaCakes118
Size

525KB
MD5

39f75c1dd4d369218878d0ef18580e12
SHA1

e00d16d3ea0f8b425853a4e41efaab255ba3ebd9
SHA256

5e394f909e5e801148270f810b440d94febd32a0d2659134f7631a89b607ae2b
SHA512

b1a91c442731ed7cb29e95d400dc8f2c0537caac2abc826853596b16a2462f4814e9f41ad608466f5b7918b8c0fd31fcf8e9515fafabd3864d0ed129be7ce74e
SSDEEP

12288:/Jjnh13RiYepb/MV4UFlh48ThV3opgWgZq5BA04:/FnjhDWb/MV4UFlvTcgZy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
39f75c1dd4d369218878d0ef18580e12_JaffaCakes118

Files

39f75c1dd4d369218878d0ef18580e12_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1d2f0cd854779ce780d9f550bce27af7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

LineTo
GetMetaFileW
GetGlyphOutlineW
CreateEnhMetaFileA
GetSystemPaletteEntries
AnimatePalette
GetTextFaceW
StartDocA
GetTextCharset
DeleteEnhMetaFile
SetFontEnumeration
PtInRegion
CreateRectRgn
GetCharacterPlacementW
CreatePolygonRgn
ModifyWorldTransform
CreateDIBPatternBrush
CloseFigure
CreateRoundRectRgn
SetMagicColors
GetKerningPairsW
GetBitmapDimensionEx
Rectangle
RestoreDC

comdlg32

ChooseColorW
ChooseFontA

user32

CreateDialogIndirectParamA
CheckMenuRadioItem
CallMsgFilterW
DlgDirListComboBoxA
RegisterClassExA
DdeAbandonTransaction
SubtractRect
SendNotifyMessageA
RegisterClassA
DrawStateA
SetCursorPos
ChildWindowFromPoint

kernel32

ExpandEnvironmentStringsA
TerminateProcess
HeapAlloc
GetModuleHandleA
CreateDirectoryExA
GetDateFormatA
CompareStringW
TlsAlloc
OpenMutexA
GetPrivateProfileStructA
GetCurrentProcess
WideCharToMultiByte
SetConsoleScreenBufferSize
DuplicateHandle
SetStdHandle
GetStringTypeA
SetHandleCount
TlsSetValue
HeapReAlloc
GetCalendarInfoW
GetLongPathNameA
RtlUnwind
LeaveCriticalSection
InterlockedExchange
GetFileType
VirtualAlloc
GetSystemDefaultLCID
GetConsoleTitleA
GetACP
GetLocaleInfoW
GetLocaleInfoA
FindResourceA
EnumSystemLocalesA
TlsGetValue
GetTickCount
DeleteCriticalSection
HeapDestroy
ReadConsoleW
HeapCreate
GetPrivateProfileStringW
LoadLibraryA
UnhandledExceptionFilter
GetModuleFileNameA
ReadFile
CompareStringA
GetSystemTimeAsFileTime
IsValidCodePage
GetStartupInfoA
QueryPerformanceCounter
FreeEnvironmentStringsW
FormatMessageA
TlsFree
GetStringTypeExA
CreateWaitableTimerA
GetCPInfo
HeapFree
SetEnvironmentVariableA
WriteFile
CommConfigDialogW
InterlockedExchangeAdd
LCMapStringA
ExitProcess
GetCurrentThread
GetCurrentThreadId
GetTimeFormatA
GetUserDefaultLCID
IsBadWritePtr
EnterCriticalSection
CloseHandle
GetSystemInfo
GetConsoleMode
HeapSize
GetTimeZoneInformation
VirtualFree
OpenFileMappingW
GetCurrencyFormatA
LCMapStringW
GetEnvironmentStrings
GetSystemDirectoryA
GetProcAddress
VirtualProtect
CreateMutexA
FreeEnvironmentStringsA
GetVersionExA
IsValidLocale
GetCommandLineA
InitializeCriticalSection
GetLastError
GetUserDefaultLangID
GetStdHandle
SetFilePointer
VirtualQuery
SetLastError
MultiByteToWideChar
FlushFileBuffers
GetEnvironmentStringsW
CreateSemaphoreW
GetCurrentProcessId
GetProfileStringW
GetStringTypeW
GetOEMCP

comctl32

InitCommonControlsEx

Sections

.text
Size: 189KB - Virtual size: 188KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 315KB - Virtual size: 314KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1d2f0cd854779ce780d9f550bce27af7

Headers

File Characteristics

Imports

gdi32

comdlg32

user32

kernel32

comctl32

Sections

.text Size: 189KB - Virtual size: 188KB

.rdata Size: 9KB - Virtual size: 26KB

.data Size: 315KB - Virtual size: 314KB

.rsrc Size: 11KB - Virtual size: 10KB

.text
Size: 189KB - Virtual size: 188KB

.rdata
Size: 9KB - Virtual size: 26KB

.data
Size: 315KB - Virtual size: 314KB

.rsrc
Size: 11KB - Virtual size: 10KB