695fb8a5ee39b51a6831ed70ad51b3e8_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

695fb8a5ee39b51a6831ed70ad51b3e8_JaffaCakes118
Size

123KB
MD5

695fb8a5ee39b51a6831ed70ad51b3e8
SHA1

ad080510866f3d60555e7f4d1de1b0f983377f93
SHA256

2d01b79287c7ab3791db226d7a764c00eddd20b11dd6430d8663e057fafc5935
SHA512

5a1f917056360266f46fd518e0975a626f97322fb0ed52ea3a2c126d9a57b8eb5253a583644fd16f88597ba4eb70ea8d31f175d3cf6f11913bbdd91580602a53
SSDEEP

3072:jhIF+RD3nN9E6oVQWsmFfwbTRcjjVuWiXWyH4XO9BsCJE1Bl6diMHi:jmcrnN9EXbsmFRppxOUbjqiM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
695fb8a5ee39b51a6831ed70ad51b3e8_JaffaCakes118

Files

695fb8a5ee39b51a6831ed70ad51b3e8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

52032ce956aa925043666ca68e33f242

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

WaitMessage
GetKeyboardType
GetKeyboardState
DrawEdge
ShowScrollBar
GetActiveWindow
GetKeyboardLayout
GetFocus
DefFrameProcA
GetKeyNameTextA
IsMenu
SetScrollPos
UnregisterClassA
FillRect
GetCapture
CharNextA
GetTopWindow
CreatePopupMenu
OemToCharA
SetForegroundWindow
SetWindowPlacement
DefWindowProcA
DrawIconEx
OpenIcon
EndDialog
ReleaseDC
DrawTextA
CreateWindowExA
GetDesktopWindow
CreateIcon
MsgWaitForMultipleObjects
CharUpperBuffA
IsIconic
DrawMenuBar
ShowWindow
GetKeyboardLayoutList
TranslateMDISysAccel
IsChild
EnumThreadWindows
InvalidateRect
IntersectRect
ClientToScreen
SetClassLongA
GetMenu
CharLowerBuffA
EnumWindows
GetParent
LoadKeyboardLayoutA
SetCapture
GetDC
EmptyClipboard
FrameRect
IsWindowEnabled
SetScrollInfo
EnableMenuItem
IsWindowVisible
PeekMessageA
IsDialogMessageA
DispatchMessageA
CharUpperA
SetWindowLongA
ActivateKeyboardLayout
GetIconInfo
MoveWindow
RegisterWindowMessageA

gdi32

CreateBitmap
GetTextColor
LineTo
CreateDIBSection
GetTextAlign

comctl32

ImageList_Draw
ImageList_GetBkColor
ImageList_Add
ImageList_Create
ImageList_DrawEx
ImageList_Remove

kernel32

InitializeCriticalSection
EnumCalendarInfoA
WideCharToMultiByte
GetModuleHandleA
GetEnvironmentStrings
ReadFile
GetThreadLocale
GetVersionExA
GetLocalTime
SetFilePointer
lstrlenW
MulDiv
LocalAlloc
GetProcessHeap
EnterCriticalSection
CompareStringA
ExitProcess
GetCurrentThread
IsBadReadPtr
lstrcpynA
SetEndOfFile
GetStdHandle
GetFullPathNameA
GetDiskFreeSpaceA
FormatMessageA
GetCurrentProcessId
DeleteCriticalSection
DeleteFileA
GlobalDeleteAtom
SetErrorMode
GetModuleHandleW
GetCurrentProcess
FreeResource
GetACP
CreateEventA
GetFileSize
GetTickCount
GetStartupInfoA
GetStringTypeA
GlobalFindAtomA
GlobalAlloc
GetTempPathA
lstrcatA
VirtualAlloc
LockResource
GlobalAddAtomA
VirtualAllocEx
CreateFileA
lstrcmpA
LoadLibraryA
HeapFree
SetThreadLocale
GetFileType
GetDateFormatA
LocalReAlloc
GetLocaleInfoA
WriteFile
FindFirstFileA
MoveFileA
GetFileAttributesA
FreeLibrary
GetCurrentThreadId
ExitThread

Exports

Exports

_hqwhcv80

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 105KB - Virtual size: 237KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

52032ce956aa925043666ca68e33f242

Headers

File Characteristics

Imports

user32

gdi32

comctl32

kernel32

Exports

Exports

Sections

.text Size: 10KB - Virtual size: 10KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 105KB - Virtual size: 237KB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 10KB - Virtual size: 10KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 105KB - Virtual size: 237KB

.rsrc
Size: 2KB - Virtual size: 1KB