66231a1feae06aba7b11ee54e492558e_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

66231a1feae06aba7b11ee54e492558e_JaffaCakes118
Size

209KB
MD5

66231a1feae06aba7b11ee54e492558e
SHA1

63cb6ae2120168e6c56214ad8276987a507a2335
SHA256

d40e9ffc030e41c89121ccd5e852ef8ff6fc5dd6b13c3961b8c35be70bf932d8
SHA512

b6cb92a718c58fbb8fced0dc0fa20915ff37409ec3eed6c6f4ad3b605ecf6975260af993afcd44f10cd02d049bed75ef313bd142eb551b21cff6db5cd5da4fdb
SSDEEP

3072:3qOTaeugAi1jJS2g2jl1csCFln7Owhm+OOVpC4BeitZOCTJmfBr1E:6OTaeuHipgHndM+lLCSL6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
66231a1feae06aba7b11ee54e492558e_JaffaCakes118

Files

66231a1feae06aba7b11ee54e492558e_JaffaCakes118
.exe windows:1 windows x86 arch:x86

8244d4de65d450ce76cfefb1104fab6e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

BeginDeferWindowPos
PostMessageA
SetDlgItemTextA
FillRect
GetDC
InflateRect
FrameRect
AppendMenuA
GetSubMenu
DialogBoxParamA
MessageBoxA
EnumWindows
ExitWindowsEx
wsprintfA
UnionRect
IsZoomed
GetMenuItemID
EndPaint
SetUserObjectSecurity
SendMessageA
IntersectRect
CloseClipboard
DefMDIChildProcA
GetMenu
LoadImageA
GetDesktopWindow
GetFocus
InvalidateRect
DrawMenuBar
IsIconic
ChildWindowFromPoint
IsDialogMessageA
ReleaseDC
TrackPopupMenu
DrawEdge
GetParent
CheckMenuRadioItem
IsWindowVisible
RegisterClassA
GetClientRect
DestroyIcon
GetSysColor
EnableWindow
GetWindowDC
ShowWindow
LoadIconA
GetMenuItemCount
SetMenuItemInfoA
GetClassLongA
SetFocus
GetDlgItem
GetCursorPos
SetForegroundWindow
DrawFrameControl
SendMessageTimeoutA
EndDialog
CreateIconIndirect
GetUserObjectSecurity
GetMessageA
SetClipboardData
TranslateMessage
DrawTextA
CreateWindowExA
GetKeyState
OffsetRect
SystemParametersInfoA
GetCapture
ScrollWindowEx
GetWindowRect

msvcrt

_ismbclower
wcstok
_tell
_copysign
_resetstkoflw
_ismbcspace
_mbsstr
_set_SSE2_enable
wcscat
_fcvt
iscntrl
_wgetcwd
exit
_wexecle
_except_handler3
_wcslwr
wcsncat
_mbsnbicmp
_onexit
_splitpath
cosh
_wspawnvp
_mbsncat
_adj_fdiv_m16i
_c_exit
_wstrtime
_XcptFilter
_ultoa
_sopen
__p__commode
log10
memcpy
_wstat
_strnicoll
iswgraph
pow
__setusermatherr
__set_app_type
_wrename
_wstati64
_wchdir
_exit
strpbrk
_ui64toa
_mbsicoll
_wtol
_wgetdcwd
_setjmp
fputws
wcsrchr
_mbschr
_fileinfo
scanf
_putch
_wgetenv
_initterm
__p__fmode
__getmainargs
_ungetch
fopen
fflush
_adj_fdiv_m32i
_wexecvp
_getch
_pclose
_memicmp
_ismbbalnum
_mbctype
fgetwc
_putws
_getdrives
gets
_cwprintf
setlocale
_ismbbgraph
_hypot
_adjust_fdiv
_acmdln
_nextafter
_pwctype
_execlp
_wcsnset
_flsbuf
_ismbslead
_ftime
_controlfp
_mbsnbset
sprintf
_findclose
sscanf
mbstowcs

kernel32

ExpandEnvironmentStringsA
SizeofResource
SetEvent
Module32First
Module32Next
GetThreadContext
TerminateProcess
GetStdHandle
WaitForMultipleObjects
GetLastError
lstrlenW
GetModuleHandleW
FindFirstFileA
WideCharToMultiByte
InterlockedIncrement
GlobalReAlloc
GetEnvironmentStrings
DeleteCriticalSection
CreateFileMappingA
GetFileType
SetStdHandle
ResetEvent
GetSystemTimeAsFileTime
CloseHandle
WriteConsoleW
GetProcessHeap
ResumeThread
LoadResource
SetUnhandledExceptionFilter
OpenEventA
LocalAlloc
InterlockedExchange
GetExitCodeThread
FileTimeToSystemTime
GetModuleFileNameA
GetStartupInfoA
LockResource
CreateEventA
GetFileAttributesA
HeapAlloc
GetStringTypeW
LCMapStringA
ReadProcessMemory
DuplicateHandle
VirtualFree
GetModuleHandleA
lstrcmpA
GetCommandLineW
GetStringTypeA
SetFilePointer
lstrlenA
lstrcatA
LoadLibraryW
IsValidCodePage
GetCurrentThreadId
HeapFree
GetEnvironmentVariableA
CreateFileA
GetVersionExA
TlsAlloc
VirtualAlloc
GetCurrentProcess
TlsSetValue
QueryPerformanceFrequency
DeleteFileA
GetTickCount
IsBadReadPtr
MultiByteToWideChar
GetConsoleOutputCP
HeapReAlloc
EnterCriticalSection
OpenProcess
lstrcmpiA
GlobalMemoryStatus
GetDriveTypeA

gdi32

GetObjectA
EndDoc
CreateRectRgnIndirect
CreateCompatibleBitmap
GetStockObject
DeleteObject
StartPage
Rectangle
MoveToEx
CreateRectRgn
SetTextAlign
SelectClipRgn
DeleteDC
Polyline
GetTextExtentPoint32A
RectInRegion
GetTextMetricsA
SetBkMode
CreatePen
GetBkColor
CreateSolidBrush
SetROP2
CreateCompatibleDC
SetTextColor
SaveDC
RestoreDC
EndPage
GetBkMode
BitBlt
ExtTextOutA
CreateDIBSection
LineTo
SelectObject
SetBkColor
StartDocA
GetDeviceCaps

Sections

.text
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 181KB - Virtual size: 181KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8244d4de65d450ce76cfefb1104fab6e

Headers

File Characteristics

Imports

user32

msvcrt

kernel32

gdi32

Sections

.text Size: 25KB - Virtual size: 25KB

.rdata Size: 181KB - Virtual size: 181KB

.data Size: 512B - Virtual size: 72KB

.rsrc Size: 512B - Virtual size: 4B

.text
Size: 25KB - Virtual size: 25KB

.rdata
Size: 181KB - Virtual size: 181KB

.data
Size: 512B - Virtual size: 72KB

.rsrc
Size: 512B - Virtual size: 4B