75f2a6be36973cc9f3e1cc2a821bb05b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

75f2a6be36973cc9f3e1cc2a821bb05b_JaffaCakes118
Size

24KB
MD5

75f2a6be36973cc9f3e1cc2a821bb05b
SHA1

c9f9f635caf9d79b14591af3597a002aa01b9ced
SHA256

37ecf1b155e88ab4735a58de7713a3a1860f1f5a43c21746be2d076ac46db1fe
SHA512

8c6ca35815938186162502f20a2670a1241ce5b7f3a58f7af3c60a0a91f38eff095da2868946ac51be0dedb3789d04af8105da074776129595d72dee2f070f69
SSDEEP

384:q2niFiEofS5a8a5Hfe5INrEmQOB7WNav5mgc1AaLpFkwbVUzWZGGEgGYceW9FqUT:LiFiPSQ8+Hfe2NrEK7WNaAgabrVxMPLT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
75f2a6be36973cc9f3e1cc2a821bb05b_JaffaCakes118

Files

75f2a6be36973cc9f3e1cc2a821bb05b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3a6181bce21ea58c6ca8d912db2c3f43

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

crypt32

CryptFormatObject

msvcrt

_initterm
_adjust_fdiv
__CxxFrameHandler
free
wcslen
malloc

shlwapi

StrNCatW
StrCpyNW
StrDupW

advapi32

RegCloseKey
RegQueryValueExW
RegOpenKeyExW

kernel32

LeaveCriticalSection
GetCurrentProcess
IsBadReadPtr
SetUnhandledExceptionFilter
VirtualAlloc
GetCurrentProcessId
LocalAlloc
DeleteCriticalSection
LocalFree
lstrlenW
EnterCriticalSection
GetLastError
GetCurrentThreadId
IsBadWritePtr
GetTickCount
AddAtomW
InterlockedDecrement
TerminateProcess
Sleep
UnhandledExceptionFilter
SetLastError
InterlockedIncrement
InitializeCriticalSection
DisableThreadLibraryCalls
MulDiv

gdi32

PaintRgn
SetWindowExtEx
SelectObject
CreateFontW
ExtTextOutW
SetMapMode
LineTo
SetViewportExtEx
SetBkColor
CreateSolidBrush
DeleteDC
SetTextColor
CreateCompatibleDC
GetRgnBox
DPtoLP
MoveToEx
SetViewportOrgEx
DeleteObject
SetBkMode
Ellipse
SetDCPenColor
GetStockObject
GetMapMode
CreatePolygonRgn
BitBlt
CreatePenIndirect
GetDeviceCaps

user32

UnregisterDeviceNotification
GetClientRect
InvalidateRect
CreateWindowExW
GetDlgItem
DestroyWindow
UnregisterClassW
SendMessageW
GetDlgCtrlID
GetDC
GetWindowTextW
GetCursorPos
DefWindowProcW
BeginPaint
ReleaseDC
EnableWindow
IsWindow
ScreenToClient
GetParent
SetRect
RedrawWindow
DrawTextW
DrawIconEx
LoadStringW
SetTimer
PostMessageW
SendDlgItemMessageW
SetWindowPos
GetSysColor
DestroyIcon
IsWindowVisible
GetWindowLongW
GetMessageTime
EndPaint
MapWindowPoints
RegisterDeviceNotificationW
GetWindowDC
GetSystemMetrics
MessageBoxW
ChildWindowFromPoint
SetWindowLongW
KillTimer
RegisterClassExW
GetWindowRect
LoadImageW
wsprintfW
WinHelpW

Sections

.text
Size: 512B - Virtual size: 404B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3a6181bce21ea58c6ca8d912db2c3f43

Headers

File Characteristics

Imports

crypt32

msvcrt

shlwapi

advapi32

kernel32

gdi32

user32

Sections

.text Size: 512B - Virtual size: 404B

.rsrc Size: 13KB - Virtual size: 13KB

.idata Size: 3KB - Virtual size: 3KB

.data Size: - Virtual size: 96KB

.rdata Size: 5KB - Virtual size: 5KB

.text
Size: 512B - Virtual size: 404B

.rsrc
Size: 13KB - Virtual size: 13KB

.idata
Size: 3KB - Virtual size: 3KB

.data
Size: - Virtual size: 96KB

.rdata
Size: 5KB - Virtual size: 5KB