4bdf9f5e1e0fe057836975c691643924_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

4bdf9f5e1e0fe057836975c691643924_JaffaCakes118
Size

22KB
MD5

4bdf9f5e1e0fe057836975c691643924
SHA1

c2f116ccc122930903280cd87fbb65bfaca4b4da
SHA256

dd06f4b6e7b4f9479ba716a7fb835d9d17abf21f6848fc8dd9f895e239f616b1
SHA512

b321be6736529db09b3348ed1172d8fe0b0ca0752672b1d33b22c788358fcf8242c4973e790431fa1e16223aa940981dc58f1667f9a35b0a81096a450a3aefa9
SSDEEP

384:98pqkdu/XGfkVyM6OIgqlXpaiNna9p9HJBzYCz0sHzP5Nm:S8/X5gtOIgniNarNJBdk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4bdf9f5e1e0fe057836975c691643924_JaffaCakes118

Files

4bdf9f5e1e0fe057836975c691643924_JaffaCakes118
.exe windows:4 windows x86 arch:x86

20ff71736d4d965757f89234114f297c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
LocalFree
GetTickCount
InterlockedCompareExchange
ReadFile
CreateEventW
LeaveCriticalSection
GetProcAddress
LoadLibraryA
InterlockedCompareExchange
DeleteCriticalSection
GetModuleHandleA
LoadLibraryA
InterlockedDecrement
GetModuleHandleW
LocalFree
LocalAlloc
GetModuleFileNameA
GetModuleFileNameA
CreateFileW
GetCurrentProcess
GetCurrentProcess
GetSystemTimeAsFileTime
VirtualAlloc
LocalFree
InterlockedCompareExchange
LoadLibraryA
CreateThread
VirtualAlloc
HeapAlloc
HeapAlloc
SetLastError
ReadFile
InterlockedExchange
MultiByteToWideChar
LoadLibraryA
lstrlenA
UnhandledExceptionFilter
HeapDestroy
InterlockedIncrement
InterlockedCompareExchange
SetLastError
VirtualProtect
InterlockedDecrement
GetTickCount
InterlockedDecrement
InterlockedCompareExchange
DisableThreadLibraryCalls
GetLastError
GetLastError
GetSystemTimeAsFileTime
DeleteCriticalSection
DeleteCriticalSection
VirtualProtect
VirtualProtect
GetCurrentProcess
CreateEventW
GetModuleHandleW
CreateThread
GetProcAddress
HeapAlloc
DeleteCriticalSection
VirtualProtect
QueryPerformanceCounter
InitializeCriticalSection
InterlockedCompareExchange
LocalFree
SetLastError
DeleteCriticalSection
GetModuleHandleA

user32

LoadCursorW
EndPaint
SetForegroundWindow
SetWindowLongW
IsWindow
EnableWindow
BeginPaint
GetParent
LoadCursorW
CreateWindowExW
EndPaint
PostMessageW
BeginPaint
PostMessageW
SendMessageW
GetDesktopWindow
EndDialog
GetSystemMetrics
LoadCursorW
ShowWindow
PostMessageW
CharNextW
SendDlgItemMessageW
DispatchMessageW
BeginPaint
GetDlgItem
TranslateMessage
DispatchMessageW
SetDlgItemTextW
SetWindowLongW
GetFocus
PeekMessageW
SetCursor
DefWindowProcW
SetForegroundWindow
wsprintfA
DispatchMessageW
GetWindowRect
GetSysColor
KillTimer
GetDC
SendMessageW
MessageBoxW
CreateWindowExW
EndPaint
SetForegroundWindow
PeekMessageW
LoadIconW
SetCursor
GetDlgItem
GetClientRect
SetWindowLongW
BeginPaint
EndPaint
SetWindowPos
GetWindowLongW
ShowWindow
EndPaint
wsprintfA
wsprintfA
CreateWindowExW
IsDlgButtonChecked
BeginPaint
DefWindowProcW
SetCursor

gdi32

SetWindowOrgEx
CreateFontA
LineTo
BitBlt
CreateFontIndirectA
GetWindowExtEx
CreateBitmap
CreateDIBSection
Rectangle
SelectObject
StretchBlt
GetPixel
BitBlt
SetPixel
BitBlt
Rectangle
RoundRect
GetWindowExtEx
Ellipse
GetBkColor
SelectObject
CreateSolidBrush
GetWindowExtEx
SetBkColor
SetTextColor
Polygon
CombineRgn
SetTextColor
CreateDIBitmap
CreatePen
SetWindowOrgEx
GetPixel
CreateRectRgn
MoveToEx
GetWindowOrgEx
CombineRgn
CreateBitmap
GetBkColor
GetPixel
Ellipse
StretchBlt
Rectangle
StretchBlt
MoveToEx
SetBrushOrgEx
PatBlt
SetWindowExtEx
CreateDIBSection
StretchBlt
BitBlt
LineTo
CreateFontIndirectA
SetTextColor
CreatePen
CreateBitmapIndirect
GetWindowExtEx
SetBkColor
GetBkColor
SetBkColor
PatBlt
CombineRgn
BitBlt
SetBkColor
CreateFontA

Sections

.text
Size: 15KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

20ff71736d4d965757f89234114f297c

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 15KB - Virtual size: 16KB

.data Size: 512B - Virtual size: 4KB

.rdata Size: 5KB - Virtual size: 8KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 15KB - Virtual size: 16KB

.data
Size: 512B - Virtual size: 4KB

.rdata
Size: 5KB - Virtual size: 8KB

.rsrc
Size: 1024B - Virtual size: 4KB