6f8775f96792fc70f1083a65ee315bb3_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

6f8775f96792fc70f1083a65ee315bb3_JaffaCakes118
Size

192KB
MD5

6f8775f96792fc70f1083a65ee315bb3
SHA1

b772c53ea68cfa4af1fe3356662a7b4b2a46f0b9
SHA256

707d765896a665a65c2f29e45fde3a70c512d93bc0bb7d62ee3ca0b56f912b6b
SHA512

1ab2948da56c7c44d1c590e96f77359f2958ce7fac7960c60840968d216b60e35b1c90c3a16ada66bc7bf651abc175c1f6bda26c1e04397a4d9a27e877cf12c6
SSDEEP

3072:e7eHNL76zloFb3sYcsicIenNrLUp9OIAQvAMutj+UiNpQETEhoYEnPnBv5dAKNAf:e7kH6SV8joObOgULjoBnP95uKag1w

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6f8775f96792fc70f1083a65ee315bb3_JaffaCakes118

Files

6f8775f96792fc70f1083a65ee315bb3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2de67a8bb15c6be70739abec60f22509

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetKeyNameTextA
FillRect
IsDialogMessageW
SetWindowLongA
PostMessageW
DrawFrameControl
AppendMenuA
GetSysColorBrush
CreatePopupMenu
CharToOemA
GetMessagePos
UpdateWindow
FindWindowA
GetWindowTextW
GetWindowTextLengthW
EnumChildWindows
SetWindowPos
GetActiveWindow

kernel32

LCMapStringA
LoadLibraryA
GetOEMCP
GetACP
GetCPInfo
GetStringTypeW
GetStringTypeA
MultiByteToWideChar
GetProfileStringW
RtlUnwind
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
GetLocalTime
GetCurrentProcessId
GetFileAttributesA
SetFileAttributesA
FindFirstFileW
FindClose
GetProcessHeap
FindNextFileW
WriteFile
GetSystemTimeAsFileTime
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
LCMapStringW
HeapReAlloc
VirtualAlloc
HeapFree
VirtualFree
HeapCreate
HeapAlloc
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
GetProcAddress
HeapDestroy

gdi32

CreateRectRgn
GetPixel
PtVisible
CreateFontA
CreateCompatibleDC
CreatePatternBrush
CreateSolidBrush
CreateRectRgnIndirect
SelectClipRgn

ws2_32

WSACloseEvent
WSASocketA
WSAConnect
WSACleanup
WSAStartup
WSACreateEvent
WSAAddressToStringA

version

GetFileVersionInfoSizeA

Sections

.text
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 88KB - Virtual size: 486KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2de67a8bb15c6be70739abec60f22509

Headers

File Characteristics

Imports

user32

kernel32

gdi32

ws2_32

version

Sections

.text Size: 52KB - Virtual size: 51KB

.rdata Size: 40KB - Virtual size: 36KB

.data Size: 88KB - Virtual size: 486KB

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 4KB - Virtual size: 2KB

.text
Size: 52KB - Virtual size: 51KB

.rdata
Size: 40KB - Virtual size: 36KB

.data
Size: 88KB - Virtual size: 486KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 4KB - Virtual size: 2KB