4de225c0c455cc637c91606b1093e177_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

4de225c0c455cc637c91606b1093e177_JaffaCakes118
Size

265KB
MD5

4de225c0c455cc637c91606b1093e177
SHA1

563eaa3ca93ae6ece3ac38b61ed4cd2a8ebaef7c
SHA256

a703dab50200fa1ed2d0ceaf48651176adc4b4390be3e71fa2ba1f029406d816
SHA512

ab0a17294fb4f433d6fabab57c45ec6a1432e40f6f111dc4438c502de6d6768ab11e7548095bc0dfcdd755d1daa788aa77a002a1cd38eae54862406ab337ca91
SSDEEP

6144:gElFXqlVdAFj39Kk02R89kr1lHoCjC3peB:gUX4AZ39KJ2Rskr1lHE3A

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4de225c0c455cc637c91606b1093e177_JaffaCakes118

Files

4de225c0c455cc637c91606b1093e177_JaffaCakes118
.exe windows:5 windows x86 arch:x86

7f752ad3723f42210719e3fde8bfd907

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

gdi32

DeleteDC
StretchBlt
SetRectRgn
GetStockObject
CreateFontIndirectW
CreateCompatibleBitmap
MoveToEx
GetTextExtentPoint32W
GetDeviceCaps
LineTo
SetPixel
SetTextColor

advapi32

RegFlushKey
RegOpenKeyExA
RegSetValueExW

msvcrt

__getmainargs
_exit
rand
exit

user32

wsprintfW
LoadCursorW
SetTimer
SetWindowTextW
EndDialog
PostMessageW
FlashWindow
GetMessageW
GetDesktopWindow
TranslateMessage
GetDC
ReleaseCapture
GetMenu
DialogBoxParamW
GetWindowRect
GetSysColor
InvalidateRect
LoadStringW
GetDlgItem

kernel32

HeapValidate
HeapCreate
MapViewOfFile
TransactNamedPipe
SystemTimeToFileTime
InterlockedExchangeAdd
MapViewOfFileEx
WaitForSingleObjectEx
FileTimeToDosDateTime
OpenThread
CreateThread
SetThreadIdealProcessor
DeleteFileA
RtlFillMemory
GetQueuedCompletionStatus
SetThreadAffinityMask
ResetEvent
ReadFile
OpenFileMappingA
GetThreadLocale
EnumLanguageGroupLocalesA
WaitNamedPipeA
VirtualAllocEx
WaitForMultipleObjectsEx
GetThreadTimes
FreeEnvironmentStringsA
GetSystemTime
GetEnvironmentVariableA
EnterCriticalSection
InterlockedIncrement
LeaveCriticalSection
CreateFileMappingA
GetCurrentDirectoryA
lstrcatW
FlushViewOfFile
SetFilePointer
HeapQueryInformation
ConnectNamedPipe
GetEnvironmentStringsA
CreateFileA
CreateNamedPipeA
PostQueuedCompletionStatus
SetFilePointerEx
HeapAlloc
RegisterWaitForSingleObject
SetEnvironmentVariableA
InterlockedPopEntrySList
InitializeCriticalSection
GetSystemDefaultLangID
CopyFileExA
SetFirmwareEnvironmentVariableA
InterlockedDecrement
WaitForMultipleObjects
SuspendThread
GetFileTime
SetThreadPriority
GetStringTypeExA
CreateIoCompletionPort
EnumSystemLanguageGroupsA
GetLocalTime
lstrcmpW
GetUserDefaultLangID
HeapSummary
TryEnterCriticalSection
HeapFree
GetTickCount
CreateMutexA
CloseHandle
GetFileAttributesExA
UnmapViewOfFile
WaitForSingleObject
InterlockedPushEntrySList
HeapDestroy
FileTimeToLocalFileTime
GetCurrentProcessId
lstrcmpA
GetCurrentProcess
lstrlenA

Sections

.text
Size: 175KB - Virtual size: 175KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 66KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 572KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7f752ad3723f42210719e3fde8bfd907

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

advapi32

msvcrt

user32

kernel32

Sections

.text Size: 175KB - Virtual size: 175KB

.data Size: 66KB - Virtual size: 65KB

.rsrc Size: 23KB - Virtual size: 572KB

.text
Size: 175KB - Virtual size: 175KB

.data
Size: 66KB - Virtual size: 65KB

.rsrc
Size: 23KB - Virtual size: 572KB