5a06bc668ab6030646244882e1eae470_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

5a06bc668ab6030646244882e1eae470_JaffaCakes118
Size

126KB
MD5

5a06bc668ab6030646244882e1eae470
SHA1

1bb56a3d363c51935794ffb165742380e5fb8304
SHA256

10a733d416ecac82eaf652cb4455f7cee3d792a1e0634b77c776671fbde385e8
SHA512

e37662e66902f2d67c026cc4cd747e8c2b17c1ca7761581f7a984f0703c1a1dde0d0d23737fb2689c01795cdc9f26ca3f807917bbea63b6de19e1808f3338c52
SSDEEP

3072:DRgLCdVROjSeTLYCy0Ax6XS6fp+x7Mxjm7sCPz:VoUrqF4enqYg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5a06bc668ab6030646244882e1eae470_JaffaCakes118

Files

5a06bc668ab6030646244882e1eae470_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0a057b04361fa282afe428973eed95a1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SetStretchBltMode
DeleteDC
CreatePen
GetTextMetricsW
CreateCompatibleDC
LineTo
GetObjectA
TextOutW
SelectPalette
GetTextExtentPointW
GetTextExtentPoint32W
GetStockObject
SetBkMode

kernel32

CreateFileMappingW
InitializeCriticalSection
LoadLibraryW
ReleaseMutex
GetProcAddress
LoadLibraryExW
SetFileTime
GetModuleHandleA
OutputDebugStringA
QueryPerformanceCounter
GetFileInformationByHandle
ReadFile
GetComputerNameExW
GetCommandLineW
VirtualProtect
ExpandEnvironmentStringsW
DeleteCriticalSection
SetFilePointer
GetFileAttributesA
SetErrorMode
lstrcpyA
VirtualProtect
AddAtomA
VirtualFree
VirtualAlloc
CreateMutexW
ExitProcess
EnterCriticalSection
TerminateThread
CreateThread
SetUnhandledExceptionFilter
GetLocalTime
DisableThreadLibraryCalls
GetFileType
WideCharToMultiByte
GetLocaleInfoA

msvcrt

_vsnprintf
__set_app_type
__getmainargs
free
_except_handler3
exit
__CxxFrameHandler
strncpy
_vsnwprintf
fprintf
__wgetmainargs
strchr
towupper
malloc
memcpy
memset
_wcmdln
_c_exit
toupper
__p__commode
__p__fmode
_wcsicmp
_initterm
memmove
isalpha
__dllonexit
swprintf
_adjust_fdiv
_ftol

opengl32

glRectf
glStencilOp
glNormal3bv
glStencilMask
glRasterPos4dv
glRasterPos4i
glColor4dv

user32

GetSystemMenu
WinHelpW
DrawIcon
CreateWindowExA
SetWindowLongW
GetMessageW
CheckRadioButton
SetWindowTextA
SetFocus
SetForegroundWindow
SetWindowsHookExW
ValidateRect
GetDlgItemInt
GetDesktopWindow
DispatchMessageW
MoveWindow
GetSysColor
DefWindowProcA
RegisterClipboardFormatW
IsDlgButtonChecked
ClientToScreen
MessageBeep
CreateWindowExW
DefWindowProcW
DrawEdge
IsRectEmpty
ShowCursor
SendMessageW

Exports

Exports

SmqErcntjk
IrbxdgdVnbhcuSsdxEfl
VfwypdHfmakKtykUw

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 68B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0a057b04361fa282afe428973eed95a1

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

kernel32

msvcrt

opengl32

user32

Exports

Exports

Sections

.text Size: 2KB - Virtual size: 1KB

.data Size: 116KB - Virtual size: 116KB

.rsrc Size: 3KB - Virtual size: 2KB

.rdata Size: 3KB - Virtual size: 2KB

.reloc Size: 512B - Virtual size: 68B

.text
Size: 2KB - Virtual size: 1KB

.data
Size: 116KB - Virtual size: 116KB

.rsrc
Size: 3KB - Virtual size: 2KB

.rdata
Size: 3KB - Virtual size: 2KB

.reloc
Size: 512B - Virtual size: 68B