602cb1e9110fc7ddcb528f0d0bfb4fed_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

602cb1e9110fc7ddcb528f0d0bfb4fed_JaffaCakes118
Size

385KB
MD5

602cb1e9110fc7ddcb528f0d0bfb4fed
SHA1

f7390f2903244b0684f9f8af136d832ca406c696
SHA256

1a30d7caf935d6137399d5b42ebd8da58513d2dc18a72974cac6add5e3eedabd
SHA512

9e6d546e93fe3d0aa21f9d9e81e84a0be205db8f55f2cd71f0bdbbae0900813da4b339dc9f7c3afea2bb6b9525ce74b5c4b95e0128ec7bf645ea88f6440da874
SSDEEP

6144:0AO7oDRAxjX+bL59YrJx3cVLB3V4t1hsx3glI+gQ+yUJ5:3OkRwja561cDF4Hhsx3AfgQ+3J5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
602cb1e9110fc7ddcb528f0d0bfb4fed_JaffaCakes118

Files

602cb1e9110fc7ddcb528f0d0bfb4fed_JaffaCakes118
.exe windows:9 windows x86 arch:x86

bc6c4f8312b90345eb12b90a4a4e5b4e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

FileTimeToLocalFileTime
GetLocaleInfoW
lstrcatW
MulDiv
GetThreadLocale
CreateDirectoryW
InterlockedDecrement
GetTickCount
lstrlenA
TerminateProcess
GetLastError
QueryPerformanceCounter
FreeLibrary
HeapSize
GetFileTime
CreateFileW
GetTempFileNameW
CloseHandle
FileTimeToSystemTime
IsDBCSLeadByte
LoadLibraryA
GetModuleHandleA
VirtualFree
GlobalFree
InterlockedExchange
GetTempPathW
GetCurrentProcessId
LocalAlloc
GlobalUnlock
GetSystemTimeAsFileTime
FindClose
GlobalLock
GetNumberFormatW
lstrcpyW
UnhandledExceptionFilter
GetProcessHeap
MultiByteToWideChar
FindFirstFileW
LocalFree
GetDateFormatW
lstrlenW
VirtualAlloc
GlobalAlloc
GetFileAttributesW
GetACP
GetProcessHeaps
GetExitCodeThread
lstrcmpiW
InterlockedIncrement
SetEndOfFile
LoadLibraryW
SetUnhandledExceptionFilter
GetStartupInfoW
HeapAlloc
GetTimeFormatW
lstrcmpW
GetFileSize
RaiseException
GetModuleHandleW
GetProcAddress
lstrcpynW
GetCurrentThreadId

user32

DefWindowProcA
UpdateWindow
SendMessageA
DestroyWindow
ShowWindow
TranslateMessage
DispatchMessageA
RegisterClassExA
GetMessageA
CreateWindowExA

gdi32

SetStretchBltMode
Rectangle
TextOutW
SetDIBitsToDevice
Polygon
MoveToEx
GetTextMetricsW
CreateDCW
RectVisible
CreateRectRgnIndirect
CreateBitmap
Ellipse
SetBkColor
GetTextExtentPoint32W
GetStockObject
BitBlt
CreatePen
FillRgn
LineTo
CreateHalftonePalette
SetDIBits
SetTextAlign
StretchDIBits
EnumFontFamiliesW
CreatePolygonRgn
ResizePalette
Escape
ExtFloodFill
EnumFontFamiliesExW
GetNearestPaletteIndex
UnrealizeObject
RoundRect
PatBlt
TranslateCharsetInfo
ExtTextOutW
SetDIBColorTable
SetPixel
RestoreDC
CreatePalette
DeleteObject
GetDIBits
CreateCompatibleBitmap
CreateFontIndirectW
SetBkMode
SaveDC
CreateICW
DeleteDC
PlayMetaFile
CreatePatternBrush
StretchBlt
GetBkMode
CreateDIBitmap
GetCurrentObject
GetObjectW
RealizePalette
SelectObject
GetDIBColorTable
Polyline
SetPaletteEntries
GetDeviceCaps
PtVisible
PolyBezier
SetROP2
CreateCompatibleDC
OffsetRgn
GetNearestColor
GetTextColor
GetPixel
SetViewportExtEx
CreateSolidBrush
SetBrushOrgEx

msvcrt

wcschr
_cexit
__CxxFrameHandler
_CxxThrowException
_wtoi
__set_app_type
exit
__p__commode
__p__fmode
_c_exit
wcscat
_onexit
__dllonexit
_wcmdln
__wgetmainargs
__setusermatherr
_wcsicmp
_controlfp
_purecall
_getdcwd
__argc
wcscmp
rand
_itow
_adjust_fdiv
_beginthreadex
_wcsdup
_except_handler3
free
_initterm
_exit
_XcptFilter
_ltow
_wsplitpath
__wargv

Sections

.text
Size: 189KB - Virtual size: 189KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 186KB - Virtual size: 836KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bc6c4f8312b90345eb12b90a4a4e5b4e

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msvcrt

Sections

.text Size: 189KB - Virtual size: 189KB

.data Size: 9KB - Virtual size: 8KB

.rsrc Size: 186KB - Virtual size: 836KB

.text
Size: 189KB - Virtual size: 189KB

.data
Size: 9KB - Virtual size: 8KB

.rsrc
Size: 186KB - Virtual size: 836KB