40f377bc1987bde8091269ca0603b0dd_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

40f377bc1987bde8091269ca0603b0dd_JaffaCakes118
Size

83KB
MD5

40f377bc1987bde8091269ca0603b0dd
SHA1

51983942d509159d3f174e83d86d4c1313ccfe4c
SHA256

924ed8455276af40a81cb85d073513d3079f1a555f06dca3cf2776e5df63973e
SHA512

7d03951b935a84e2fa8b5ede3c84e072aaab2b4bc27b5cdbb2e18515651e3c762fbfd9cc47ad831a076bbb797be49a42b4472cdbf7f8c905db14b9500d9b90d2
SSDEEP

1536:TF0zx3ORP+XWGjIjwFEMsFp7OX9+aM+ntlwXeGSawksvm9kd/Lr:HRIWxsFCb6Rj5aBIm9wr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
40f377bc1987bde8091269ca0603b0dd_JaffaCakes118

Files

40f377bc1987bde8091269ca0603b0dd_JaffaCakes118
.exe windows:4 windows x86 arch:x86

cb9594f0ee0c5fc8cb017e6919c3cfd7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreatePipe
GetLastError
FormatMessageW
OpenSemaphoreW
WritePrivateProfileSectionA
ExitProcess
VirtualFree
CreateJobObjectA
FindAtomA
AssignProcessToJobObject
VerSetConditionMask
LoadLibraryA
GetSystemDefaultUILanguage
FormatMessageA
GetSystemWindowsDirectoryW
MapViewOfFileEx
SystemTimeToTzSpecificLocalTime
ExpandEnvironmentStringsW
WriteProfileStringW
GetUserDefaultLangID
SetFileTime
GetModuleHandleA
GetProcAddress
IsValidCodePage
GetModuleHandleW
VirtualAlloc

msvcrt

??_Gbad_typeid@@UAEPAXI@Z
ispunct
strcpy
memcpy
??3@YAXPAX@Z
strncpy
__p__iob
_utime
_mbsnicoll
__p__winver

user32

SetWindowLongW
PostQuitMessage
LoadImageW
PtInRect
SetFocus
GetKeyState
GetFocus
GetMenu
MapWindowPoints
AppendMenuW
ModifyMenuW
RealGetWindowClass
LoadStringW
SetDlgItemTextW
TranslateMessage

gdi32

CombineRgn
CreateRectRgnIndirect
GetDIBits
CreateRectRgn
CreatePatternBrush
ExtCreatePen
GetTextExtentPoint32W

opengl32

glRectsv
glGenLists
wglGetPixelFormat
glGetTexParameteriv
glVertexPointer
glPassThrough
wglSetLayerPaletteEntries
glEnd
GlmfPlayGlsRecord
glColor4f
glColor3iv
glTexCoord3d
glTexParameteriv
glRasterPos3i
glNormal3b
glEdgeFlagv
wglRealizeLayerPalette
glVertex4i
glPixelStoref

Exports

Exports

RhhvxUpcvcdAchelEp
KtufolnJtafeClrvlcy
HmhzkhnBeulrod

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xpi
Size: 1024B - Virtual size: 644B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ixp
Size: 512B - Virtual size: 17B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pixi
Size: 1024B - Virtual size: 836B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 72B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cb9594f0ee0c5fc8cb017e6919c3cfd7

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

gdi32

opengl32

Exports

Exports

Sections

.text Size: 4KB - Virtual size: 3KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 5KB - Virtual size: 5KB

.xpi Size: 1024B - Virtual size: 644B

.ixp Size: 512B - Virtual size: 17B

.pixi Size: 1024B - Virtual size: 836B

.rsrc Size: 66KB - Virtual size: 66KB

.reloc Size: 512B - Virtual size: 72B

.text
Size: 4KB - Virtual size: 3KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 5KB - Virtual size: 5KB

.xpi
Size: 1024B - Virtual size: 644B

.ixp
Size: 512B - Virtual size: 17B

.pixi
Size: 1024B - Virtual size: 836B

.rsrc
Size: 66KB - Virtual size: 66KB

.reloc
Size: 512B - Virtual size: 72B