7556905c52e48d3d74f08cee5e40fc65_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

7556905c52e48d3d74f08cee5e40fc65_JaffaCakes118
Size

223KB
MD5

7556905c52e48d3d74f08cee5e40fc65
SHA1

8f26313a22b4da29e8b92b12d0b7d4af07510647
SHA256

06ca141f75eb4bf068a29a51b676c3d7fddf37df5d27381d53ced30ad665aaf0
SHA512

22a7f54ad3c7aff65434520344e682204aab5bb7b43d2180c02a34832433c11da9c0ab51392fa98da7150dfd491c86055319ab12bd4e2d8fa8c01e1c46b7182f
SSDEEP

3072:w0dwoRja5PKrYS1jviEOCSVJtos3rca6ArD/kPO/Pg:zjauliEsVJto1a6ArD/KyPg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7556905c52e48d3d74f08cee5e40fc65_JaffaCakes118

Files

7556905c52e48d3d74f08cee5e40fc65_JaffaCakes118
.exe windows:4 windows x86 arch:x86

dff08fbfb6cd7003b0e3272f907597b4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpyA
CloseHandle
lstrcmpA
CreateMutexA
GetLastError
GlobalFree
WriteFile
RtlUnwind
UnhandledExceptionFilter
VirtualFree
HeapCreate
HeapDestroy
GetFileType
GetStdHandle
SetHandleCount
GetOEMCP
GetACP
GetCPInfo
WideCharToMultiByte
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
MultiByteToWideChar
FreeEnvironmentStringsA
GetModuleFileNameA
GetProcAddress
GetCurrentProcess
TerminateProcess
ExitProcess
GetVersion
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
LCMapStringA
LCMapStringW
lstrlenA
GlobalUnlock
HeapFree
HeapAlloc
GetStringTypeA
GetStringTypeW
LoadLibraryA
VirtualAlloc

user32

SendMessageA
CreateWindowExA
GetClassInfoExA
DestroyWindow
PostMessageA
ShowWindow
ReleaseDC
GetDC
LoadImageA
DispatchMessageA
TranslateMessage
GetMessageA
SetWindowPos
RegisterClassA
LoadIconA
GetClassNameA
GetCursorPos
SetForegroundWindow
DestroyCursor
PostQuitMessage
MessageBoxA
LoadStringA
InvalidateRect
GetSystemMetrics
SystemParametersInfoA
DialogBoxParamA
BeginPaint
EndPaint
EndDialog
DefWindowProcA
GetDesktopWindow
GetWindow
SetClassLongA
LoadCursorA

gdi32

DeleteObject
GetDIBits
CreateCompatibleDC
GetDIBColorTable
ExtTextOutA
SetBkMode
SetTextColor
SetTextAlign
SelectObject
CreateFontA
DeleteDC
RealizePalette
BitBlt
CreatePalette
GetDeviceCaps
SelectPalette

shell32

Shell_NotifyIconA

winmm

mixerSetControlDetails
mixerGetNumDevs
mixerGetLineInfoA
mixerGetDevCapsA
mixerOpen
mixerGetLineControlsA
mixerGetControlDetailsA
mixerClose

Sections

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 11KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 187KB - Virtual size: 188KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

dff08fbfb6cd7003b0e3272f907597b4

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

winmm

Sections

.text Size: 20KB - Virtual size: 20KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 11KB - Virtual size: 15KB

.rsrc Size: 187KB - Virtual size: 188KB

.text
Size: 20KB - Virtual size: 20KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 11KB - Virtual size: 15KB

.rsrc
Size: 187KB - Virtual size: 188KB