69d959433b84cff103fbcc5f8cf973cf_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

69d959433b84cff103fbcc5f8cf973cf_JaffaCakes118
Size

57KB
MD5

69d959433b84cff103fbcc5f8cf973cf
SHA1

b7d4bbfbe37e916d734a3e8237619db06674dbe4
SHA256

be61a90b5ed3ff2c32fe9eaec36afadf4395937e9127c5ffed2ef3b528829aed
SHA512

0d21d6e575e331a09fcbce561a30dd600fd5172da8405fee82e4e4aa7af491da238a073c34adb846f4d0ec8ad5ae3563329225ae584344da546f16fc50041874
SSDEEP

1536:g8djttCxMR1aMYJzVgt44ZjJN2zgi9WmpZaGPE6A6crZXBfk8XS:gCptCxMR1aMYJzI44lnwz9WqJPgrZXBp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
69d959433b84cff103fbcc5f8cf973cf_JaffaCakes118

Files

69d959433b84cff103fbcc5f8cf973cf_JaffaCakes118
.exe windows:4 windows x86 arch:x86

644fa860477bc349fbbaa2c7c8912fc4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapWalk
GetProcessHeaps
GetSystemDirectoryW
HeapSize
GetNumberFormatW
SetConsoleCtrlHandler
SetThreadIdealProcessor
GlobalFix
CompareStringA
FindCloseChangeNotification
SetConsoleDisplayMode
OpenProfileUserMapping
FindFirstFileExW
EnumUILanguagesA
WriteConsoleInputW
VirtualProtect
ClearCommBreak
GetDefaultCommConfigA
GetFullPathNameW
GetLastError
GetNumberOfConsoleInputEvents
SuspendThread
VirtualQueryEx
CopyFileA
SignalObjectAndWait
DeleteTimerQueueEx
EnumDateFormatsA
OpenProcess
lstrlenW
ReadConsoleOutputCharacterA
RequestDeviceWakeup
VerLanguageNameW
lstrcatW
CreateWaitableTimerA
CreatePipe
GetPrivateProfileIntW
SetCurrentDirectoryW
FindNextVolumeMountPointW
WideCharToMultiByte
GetFileAttributesA
Heap32Next
InterlockedCompareExchange
SetInformationJobObject
SetLocaleInfoA
SetConsoleHardwareState
OpenEventW
GetConsoleTitleA
WritePrivateProfileStringA
AreFileApisANSI
CompareFileTime
ExpungeConsoleCommandHistoryW
GetStringTypeW
GetConsoleAliasesLengthW
IsValidLocale
DeleteTimerQueueTimer

user32

SetDlgItemInt
IsIconic
GetListBoxInfo
GetSysColorBrush
MessageBoxIndirectW
GetComboBoxInfo
GetClassLongA
SetClipboardViewer
NotifyWinEvent
GetAppCompatFlags
ExitWindowsEx
DialogBoxIndirectParamA
MapVirtualKeyExW
GetKeyboardLayoutNameA
GetThreadDesktop
DestroyCursor
FindWindowA
CreateDialogParamW
GetMenu
MessageBoxW

gdi32

CreatePen
GdiConvertEnhMetaFile
SetRelAbs
CreateMetaFileW
GdiConvertBitmapV5
GetCharacterPlacementA
EnumFontFamiliesExW
ArcTo
CreateCompatibleBitmap
CopyMetaFileW
GetObjectW
ExtEscape
CreateEllipticRgn
GdiConsoleTextOut
StartDocW
FontIsLinked
ColorMatchToTarget
GdiEndDocEMF
MirrorRgn
PolyPolyline
AddFontResourceA
CreateDCW
GetDCOrgEx
UnrealizeObject
GetPixelFormat
GetCharWidthA
GetMetaRgn
Rectangle
AddFontResourceTracking
DeviceCapabilitiesExW
BitBlt
GetEnhMetaFileDescriptionW
GdiEntry13
GdiGetLocalDC
GetCharABCWidthsW
GdiSetServerAttr
GetTextExtentPoint32W
CreateDIBSection
GdiCreateLocalEnhMetaFile
RemoveFontResourceExA
STROBJ_dwGetCodePage
FONTOBJ_vGetInfo
GetETM
AbortDoc
GdiSwapBuffers
GetArcDirection
EngFillPath
GetWinMetaFileBits

comdlg32

GetSaveFileNameA
ReplaceTextW
ChooseColorW
GetFileTitleA
WantArrows
LoadAlterBitmap
PrintDlgExA
GetOpenFileNameA
PrintDlgW
FindTextA
ChooseFontW
PageSetupDlgW

psapi

GetDeviceDriverFileNameA
InitializeProcessForWsWatch
QueryWorkingSet
EnumProcessModules
GetDeviceDriverBaseNameW
GetWsChanges
GetModuleBaseNameW
GetDeviceDriverBaseNameA
GetMappedFileNameW
GetProcessMemoryInfo
EmptyWorkingSet
GetModuleBaseNameA
GetModuleFileNameExW
GetModuleInformation
GetModuleFileNameExA
EnumProcesses
EnumDeviceDrivers

comctl32

FlatSB_GetScrollPos
ImageList_SetFilter
ImageList_Destroy
ImageList_LoadImageW
ImageList_SetOverlayImage
FlatSB_GetScrollRange
ImageList_GetImageInfo
ImageList_Duplicate
ImageList_GetBkColor
_TrackMouseEvent
InitMUILanguage
CreateToolbar
ImageList_DrawEx
ImageList_LoadImage
ImageList_Replace
ImageList_Read
CreateStatusWindowA
ImageList_AddMasked

Sections

.text
Size: 4KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 33KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 19KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

644fa860477bc349fbbaa2c7c8912fc4

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

psapi

comctl32

Sections

.text Size: 4KB - Virtual size: 44KB

.data Size: 33KB - Virtual size: 36KB

.idata Size: 19KB - Virtual size: 40KB

.text
Size: 4KB - Virtual size: 44KB

.data
Size: 33KB - Virtual size: 36KB

.idata
Size: 19KB - Virtual size: 40KB