5e35669fdf54194096e514e813de2dcc_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

5e35669fdf54194096e514e813de2dcc_JaffaCakes118
Size

393KB
MD5

5e35669fdf54194096e514e813de2dcc
SHA1

89d4d9f5816ee7b77f3463e5e4bae1cdcd861f22
SHA256

b9fce4e73e6d9a25fcef7e6b8b03d707ca23482dbebf775cb5b086bc24573d57
SHA512

7c9462353d6bd9397f0c112023cdf29b70b4aa78901942c831607b227d09244d6748f426db50803d1b24728d7f3c309e14c7bca24b17dc313b16ade876a82e71
SSDEEP

6144:dHUDM8G3EWGobtic1F2dxyYcpEEx4JxJDPUEta5q2Sn2k9xZAYHVXYVg:KMVVb4cwVJ+454EtoSn2m1XIg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5e35669fdf54194096e514e813de2dcc_JaffaCakes118

Files

5e35669fdf54194096e514e813de2dcc_JaffaCakes118
.exe windows:5 windows x86 arch:x86

22e1f9f9f37d842a075c556498ed40ab

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

GetSysColor
MsgWaitForMultipleObjects
SetTimer
EndDialog
CallWindowProcW
SendNotifyMessageW
DestroyIcon
GetWindowTextW
LoadAcceleratorsW
DrawTextW
MonitorFromWindow
LoadStringW
DrawIconEx
InvalidateRect
SetWindowTextW
MessageBeep
GetFocus
FindWindowExW
DrawTextExW
CopyImage
SetDlgItemTextW
FrameRect
GetMessageW
MapDialogRect
GetCapture
CopyIcon
SetWindowLongW
PostThreadMessageW
GetSystemMetrics

gdiplus

GdipAlloc
GdipGetPropertyItemSize
GdipGetImageEncodersSize
GdiplusShutdown
GdipGetImageHeight

shell32

ord18
ord152
SHGetPathFromIDListW
SHGetFileInfoW
SHGetFolderPathW
ShellExecuteExW
ord155

msvcrt

_cexit
_adjust_fdiv
_controlfp
__p__fmode
__RTDynamicCast
_initterm
_vsnwprintf
exit
_except_handler3
__p__commode

shlwapi

ord174
StrTrimW

kernel32

GetFullPathNameW
FindFirstFileW
VirtualAllocEx
GetTickCount
FormatMessageW
SizeofResource
CreateEventA
LocalFileTimeToFileTime
FindResourceW
InitializeCriticalSection
CreateProcessW
GetTempPathW
CreateMutexW
lstrcpynW
MapViewOfFile
SetCurrentDirectoryW
GetLocalTime
GetWindowsDirectoryW
WaitForSingleObject
SetEvent
FreeLibrary

advapi32

RegCloseKey
RegSetValueExW
RegQueryValueExW
RegDeleteValueW

ole32

CLSIDFromString
CoUninitialize
StringFromIID
CoTaskMemAlloc

gdi32

SetBkMode
SetTextColor
MoveToEx
Arc
GetStockObject
LineTo
SetROP2
GetTextExtentPoint32W
CreateCompatibleDC
DeleteObject
CreateCompatibleBitmap
SetLayout
SetBkColor

Sections

.text
Size: 234KB - Virtual size: 234KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 148KB - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 336KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

22e1f9f9f37d842a075c556498ed40ab

Headers

DLL Characteristics

File Characteristics

Imports

user32

gdiplus

shell32

msvcrt

shlwapi

kernel32

advapi32

ole32

gdi32

Sections

.text Size: 234KB - Virtual size: 234KB

.data Size: 148KB - Virtual size: 148KB

.rsrc Size: 9KB - Virtual size: 336KB

.text
Size: 234KB - Virtual size: 234KB

.data
Size: 148KB - Virtual size: 148KB

.rsrc
Size: 9KB - Virtual size: 336KB