426d0b0e6c4b040acf6da415966b2562_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

426d0b0e6c4b040acf6da415966b2562_JaffaCakes118
Size

36KB
MD5

426d0b0e6c4b040acf6da415966b2562
SHA1

6fe61318554808099d891db90dd3610c864c3bc8
SHA256

d70d440c958c6acd25fabedb40ee40f61e5f5dba409de56090d818e1d8371545
SHA512

9b1e9c86ea63d8655af2578326ff80d9dc4ebf96a84523e33ba1af9aef17175189faf999d939e6cfff59c27d2c6b6dd29a3b398ad7bf1dbf3ed44bb13e10c15e
SSDEEP

768:oKjpNibkw0bQ/Yib6ZZaXJobRwkXcWfo8TkQm/f2nbDSX0lkbg1d:oKrE8QYRZZaZobK9Wf4Qm/f2bDSElBd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
426d0b0e6c4b040acf6da415966b2562_JaffaCakes118

Files

426d0b0e6c4b040acf6da415966b2562_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4908d249c8144f83817ca2e55d2c2cce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
EnterCriticalSection
GetModuleFileNameW
LocalAlloc
GetCurrentProcess
GetCurrentProcess
GetVersionExA
GetModuleHandleW
HeapFree
HeapAlloc
GetModuleFileNameW
LocalAlloc
lstrlenA
GetModuleHandleW
LeaveCriticalSection
GetCurrentProcessId
ReadFile
LeaveCriticalSection
VirtualProtect
QueryPerformanceCounter
GetProcAddress
LocalAlloc
InterlockedIncrement
GetLastError
SetLastError
UnhandledExceptionFilter
VirtualProtect
LoadLibraryA
HeapDestroy
DisableThreadLibraryCalls
InterlockedIncrement
InitializeCriticalSection
GetLastError
DisableThreadLibraryCalls
QueryPerformanceCounter
CloseHandle
InterlockedExchange
GetProcAddress
DeleteCriticalSection
LocalFree
GetCurrentProcessId
GetCurrentThreadId
CreateThread
GetProcessHeap
HeapFree
HeapFree
QueryPerformanceCounter
LoadLibraryW
GetCurrentProcessId
CreateFileW
GetModuleFileNameA
HeapAlloc
DisableThreadLibraryCalls
GetModuleHandleA
QueryPerformanceCounter
lstrcmpiW
CreateThread
LocalFree
MultiByteToWideChar
LoadLibraryW
GetProcessHeap
DisableThreadLibraryCalls
LeaveCriticalSection

gdi32

GetBkMode
SelectObject
SetBrushOrgEx
GetPixel
GetCurrentObject
SetBrushOrgEx
Rectangle
SetBkMode
BitBlt
BitBlt
RoundRect
CreateDIBSection
SetBkMode
StretchBlt
SetBkColor
PatBlt
SetWindowExtEx
SetWindowOrgEx
RoundRect
CreateBitmapIndirect
GetWindowOrgEx
GetWindowExtEx
Ellipse
CreateDIBitmap
SetWindowOrgEx
Polygon
CreateSolidBrush
SetBkColor
SetWindowOrgEx
CombineRgn
RoundRect
CreateDIBSection
CreateBitmap
CreateDIBitmap
GetWindowExtEx
SetWindowExtEx
GetBrushOrgEx
Ellipse
CreateBitmap
CreateDIBitmap
GetWindowExtEx
SetTextColor
BitBlt
CreateBitmapIndirect
CombineRgn
CombineRgn
SelectObject
SetWindowExtEx
GetBkColor
SetPixel
CreatePen
SetPixel
CreateSolidBrush
SetBrushOrgEx
CreateCompatibleDC
GetWindowExtEx
CreateBitmapIndirect
MoveToEx
Polygon
SetBkColor
SelectObject
CreateFontA
GetBkColor
GetWindowOrgEx

user32

GetDesktopWindow
IsWindow
SetWindowTextW
PeekMessageW
DispatchMessageW
IsWindow
BeginPaint
SetFocus
SetWindowPos
EnableWindow
PeekMessageW
PostQuitMessage
LoadCursorW
wsprintfA
SetForegroundWindow
LoadStringW
GetParent
SetTimer
wsprintfA
IsWindow
SetWindowPos
SetCursor
LoadStringW
DefWindowProcW
SetDlgItemTextW
ReleaseDC
EndDialog
GetSysColor
SetWindowPos
PostQuitMessage
EnableWindow
GetSysColor
SetForegroundWindow
PeekMessageW
PostQuitMessage
DispatchMessageW
GetDlgItem
GetSystemMetrics
LoadStringW
InvalidateRect
IsDlgButtonChecked
GetWindowLongW
PeekMessageW
ReleaseDC
ShowWindow
SetWindowLongW
GetDC
IsWindow
LoadStringW
GetWindowRect
LoadStringW
SetCursor
PostMessageW
IsDlgButtonChecked
LoadIconW
GetWindowLongW
LoadCursorW
GetFocus
DialogBoxParamW
SetDlgItemTextW
SendMessageW
DispatchMessageW
BeginPaint

Sections

.text
Size: 29KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

4908d249c8144f83817ca2e55d2c2cce

Headers

File Characteristics

Imports

kernel32

gdi32

user32

Sections

.text Size: 29KB - Virtual size: 48KB

.data Size: 512B - Virtual size: 4KB

.rdata Size: 5KB - Virtual size: 8KB

.rsrc Size: - Virtual size: 24KB

.text
Size: 29KB - Virtual size: 48KB

.data
Size: 512B - Virtual size: 4KB

.rdata
Size: 5KB - Virtual size: 8KB

.rsrc
Size: - Virtual size: 24KB