47fb20ca5e3ba5ab4a9ecf5a06a22e58_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

47fb20ca5e3ba5ab4a9ecf5a06a22e58_JaffaCakes118
Size

165KB
MD5

47fb20ca5e3ba5ab4a9ecf5a06a22e58
SHA1

8d4ef4d671375ea5563c86b30859302056869ba9
SHA256

43e7c647eaf8423fc465e7d0a342161f3dc36df6de77f95550e91534ae8b0d30
SHA512

9fd1c2e0c932f84684de61e2e826ad0ebb68e3ffe8b17a87cc9103c0a82582d0b35de8a40b8337c673b429106fdb93c2694880efcaedcec8967f2e3e65558de9
SSDEEP

3072:4iY/vHi2r8KhmF6CVjwSkLga+tpznaM8JoGD2Kv839yjzK7kuZRpVRNmddPSi:UHFIQCRkLEaZoGD2G839yzq9RBNKdqi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
47fb20ca5e3ba5ab4a9ecf5a06a22e58_JaffaCakes118

Files

47fb20ca5e3ba5ab4a9ecf5a06a22e58_JaffaCakes118
.exe windows:4 windows x86 arch:x86

38edc5bdb07a0aa6ad3a38d1bbe8d6d1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoInitialize
CoFreeUnusedLibraries
StringFromGUID2
CoUninitialize
CoCreateInstance

gdi32

StretchBlt
SetStretchBltMode
CreatePen
SelectObject
GetObjectType
LineTo
BitBlt
CreateDIBSection
CreateDCW
DeleteDC
CreateCompatibleDC
CreateBitmap

user32

LoadCursorW
RedrawWindow
GetFocus
ClipCursor
TrackPopupMenuEx
SetCursor
FindWindowA
EnableWindow
IsWindow
InvalidateRect
SetParent
GetDesktopWindow
CreatePopupMenu
DestroyMenu
SetWindowPos
PtInRect

kernel32

WaitCommEvent
LocalAlloc
CreateFileW
LocalFree
GetSystemTimeAsFileTime
ReadFile
WaitCommEvent
DisableThreadLibraryCalls
GetFullPathNameW
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
EnumResourceNamesW
LoadLibraryW
ExitProcess
GetModuleFileNameA
ExitProcess
GlobalLock
CloseHandle
GlobalAlloc
GetVersionExA
GlobalUnlock

comctl32

ImageList_DragMove
ImageList_DragLeave
ImageList_DragEnter

advapi32

RegSetValueW
RegDeleteKeyW
RegQueryValueExW
RegCreateKeyW
RegOpenKeyExW
RegCloseKey
RegSetValueExW
RegEnumKeyExW

msimg32

AlphaBlend
TransparentBlt

winmm

timeGetTime

gdiplus

GdipCreateBitmapFromFile
GdipGetImageWidth
GdipGetImagePixelFormat
GdipGetImageHeight
GdipDisposeImage

Sections

.text
Size: 122KB - Virtual size: 122KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsr
Size: 512B - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

38edc5bdb07a0aa6ad3a38d1bbe8d6d1

Headers

File Characteristics

Imports

ole32

gdi32

user32

kernel32

comctl32

advapi32

msimg32

winmm

gdiplus

Sections

.text Size: 122KB - Virtual size: 122KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 39KB - Virtual size: 38KB

.rsr Size: 512B - Virtual size: 68KB

.text
Size: 122KB - Virtual size: 122KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 39KB - Virtual size: 38KB

.rsr
Size: 512B - Virtual size: 68KB