6f212b5b3aadac0b67626775e28c4f77_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

6f212b5b3aadac0b67626775e28c4f77_JaffaCakes118
Size

27KB
MD5

6f212b5b3aadac0b67626775e28c4f77
SHA1

046d392cf69f42d71dbe501eeabb84eee0a92554
SHA256

3560540a52299ef02b64ef5673998cddef266d375711c9a177ed07270171f1a8
SHA512

0f8310d5719a2e578ff5a370fbdaaaac7eaad3213b39780f078c816ff6987d596bd49e61317eaf55ddcf4b690fb75f2527d20d62f76c22bbd17641ac7826e488
SSDEEP

768:PlgGOK2CoRTTd35bkJ72bOZ39n0lWwD+76WYXItq:yGOAoHto7/0LNOM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6f212b5b3aadac0b67626775e28c4f77_JaffaCakes118

Files

6f212b5b3aadac0b67626775e28c4f77_JaffaCakes118
.exe windows:5 windows x86 arch:x86

8499daabc2c9eba78eff743a01701b12

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcessHeap
HeapFree
InterlockedCompareExchange
MultiByteToWideChar
InterlockedDecrement
LeaveCriticalSection
LoadLibraryA
GetLastError
GetModuleFileNameA
CloseHandle
HeapDestroy
GetModuleHandleW
lstrcmpiW
HeapAlloc
InitializeCriticalSection
LoadLibraryW
LocalAlloc
InitializeCriticalSection
CreateFileW
HeapFree
DisableThreadLibraryCalls
CreateFileW
InterlockedDecrement
GetVersionExA
GetSystemTimeAsFileTime
InterlockedCompareExchange
CreateThread
MultiByteToWideChar
FreeLibrary
lstrlenA
InterlockedCompareExchange
GetProcessHeap
MultiByteToWideChar
GetVersionExA
SetLastError
GetVersionExA
LoadLibraryA
GetVersionExA
ReadFile
DisableThreadLibraryCalls
CreateEventW
GetModuleFileNameW
GetCurrentProcessId
GetVersionExA
CreateThread
UnhandledExceptionFilter
lstrcmpiW
LocalFree
LocalAlloc
Sleep
VirtualAlloc
CreateEventW

user32

IsDlgButtonChecked
PostQuitMessage
CharNextW
SetForegroundWindow
BeginPaint
TranslateMessage
GetDesktopWindow
SendDlgItemMessageW
LoadIconW
CharNextW
GetSystemMetrics
ReleaseDC
InvalidateRect
GetDesktopWindow
SetWindowTextW
DestroyWindow
GetDesktopWindow
GetSysColor
DestroyWindow
ReleaseDC
ReleaseDC
GetDlgItem
EndDialog
GetDC
DispatchMessageW
ShowWindow
BeginPaint
BeginPaint
GetDC
ReleaseDC
SendMessageW
wsprintfA
CreateWindowExW
CharNextW
GetClientRect
EndPaint
SendDlgItemMessageW
MessageBoxW
PostQuitMessage
DispatchMessageW
SendMessageW
DefWindowProcW
LoadStringW
BeginPaint
DefWindowProcW
InvalidateRect
ShowWindow
DialogBoxParamW
EndDialog
GetParent
GetSysColor
SetForegroundWindow
PeekMessageW
GetParent
SetTimer
GetDesktopWindow
TranslateMessage
GetDlgItem
GetDesktopWindow
MessageBoxW

Sections

.text
Size: 22KB - Virtual size: 28KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8499daabc2c9eba78eff743a01701b12

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 22KB - Virtual size: 28KB

.data Size: 512B - Virtual size: 4KB

.rdata Size: 3KB - Virtual size: 4KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 22KB - Virtual size: 28KB

.data
Size: 512B - Virtual size: 4KB

.rdata
Size: 3KB - Virtual size: 4KB

.rsrc
Size: 1024B - Virtual size: 4KB