428862660db85c7240ad5e1d4f4da2fc_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

428862660db85c7240ad5e1d4f4da2fc_JaffaCakes118
Size

25KB
MD5

428862660db85c7240ad5e1d4f4da2fc
SHA1

82c87e07b69f2f8a477bb00abe2c61eb1257a940
SHA256

916765f6ab57db3e41ff45b7fe862a96c3aaab83ff63d13fdf3702006dcb0fcb
SHA512

287c8c81ba84943f4a925cff8ca34671049ee9c9329e784d303bf540ced5e1270b7175f0ba68309ef9aa4aa6295f58f7e751d2f5eb94a77e07d6f98819db4317
SSDEEP

768:px2KS5Ts8fm8VmnQKQhEqxrvUtVE1LZCoT:po5oWZbKQOqxrcb+LZC6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
428862660db85c7240ad5e1d4f4da2fc_JaffaCakes118

Files

428862660db85c7240ad5e1d4f4da2fc_JaffaCakes118
.exe windows:4 windows x86 arch:x86

01d631f5590e91b1c4167defc96fd8fe

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateDirectoryW
GetSystemInfo
GetProcAddress
QueryPerformanceCounter
IsBadWritePtr
OutputDebugStringA
CreateNamedPipeW
CreateDirectoryA
GetFileType
CloseHandle
WriteConsoleW
lstrcatA
GetModuleHandleA
GetWindowsDirectoryW
TerminateThread
GlobalAlloc
GetCurrentThread
GetProcAddress
CreateProcessA
GetLastError
GlobalReAlloc
GetModuleHandleW
SetUnhandledExceptionFilter
HeapFree
GetSystemDirectoryA
ExitProcess
GetCurrentThreadId
GetTimeFormatW
SetFilePointer
LoadLibraryA
LoadLibraryW
FindNextFileW

msvcrt

wcsncmp
_acmdln
wcsncpy
strcpy
sprintf
memset
memcpy
__p__commode
__wgetmainargs
atoi
strncpy
_wtoi
_vsnprintf
isalnum
towupper
_wcsnicmp
_iob

user32

DeleteMenu
GetMenuItemCount
ReleaseDC
OpenClipboard
GetKeyState
MsgWaitForMultipleObjects
LoadCursorW
GetDlgItem
SystemParametersInfoW
ShowWindow
LoadAcceleratorsW
SetScrollPos
DispatchMessageA
RemoveMenu
GetWindowPlacement
PostQuitMessage
DialogBoxParamW
LoadStringW
LoadMenuA
GetAsyncKeyState
RegisterLogonProcess
SetCapture
InvalidateRect

gdi32

CreateFontIndirectA
SelectObject
SetMapMode
SetPixel
SetTextColor
PatBlt
CreateSolidBrush
CreateCompatibleDC
DeleteDC
BitBlt
SelectPalette
SaveDC
SetBkColor
CreatePen
GetDeviceCaps

opengl32

glColor4i
glCopyTexSubImage1D
glNormal3f
glTexCoord2d
wglCopyContext
glClearStencil
glColor3us
glColor3f
glTexCoord3fv
glGetTexImage
glGetPixelMapusv
glRectdv
glInitNames

Exports

Exports

XifsGkujBf
HafoXuembhYsuuu
KmByyvAtklFbpfMua
FssUvaaZiwtrkeBoza
Zsjki

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idea1
Size: 512B - Virtual size: 277B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 91B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 102KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 54B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

01d631f5590e91b1c4167defc96fd8fe

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

gdi32

opengl32

Exports

Exports

Sections

.text Size: 9KB - Virtual size: 9KB

.rdata Size: 2KB - Virtual size: 2KB

.idea1 Size: 512B - Virtual size: 277B

.data Size: 512B - Virtual size: 91B

.rsrc Size: 102KB - Virtual size: 102KB

.reloc Size: 512B - Virtual size: 54B

.text
Size: 9KB - Virtual size: 9KB

.rdata
Size: 2KB - Virtual size: 2KB

.idea1
Size: 512B - Virtual size: 277B

.data
Size: 512B - Virtual size: 91B

.rsrc
Size: 102KB - Virtual size: 102KB

.reloc
Size: 512B - Virtual size: 54B