0277ff613229c70dc57c75c921db136c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0277ff613229c70dc57c75c921db136c_JaffaCakes118
Size

140KB
MD5

0277ff613229c70dc57c75c921db136c
SHA1

619ce32b7875c0a16f3a41d41949dfd937cbc289
SHA256

0f3cd6ebd31c1cf7347561badd16366d42d7bc27246e83a31619bec5fe55977b
SHA512

2b5233bffd1db50e0f94e506ffcd769ae955cecb91415203b7db01f686fb44477be6776dad56795d8bee84b4fa42ab43886bcc6e4caeb97882bc6eb924424ea6
SSDEEP

3072:6S/n3sWWJhLXkpdvw7Z4DgKeeQeP9EIAy6ppH8p3Dtnd9JP:pn3sZTk7vAZ4DgTjI+psn5P

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0277ff613229c70dc57c75c921db136c_JaffaCakes118

Files

0277ff613229c70dc57c75c921db136c_JaffaCakes118
.exe windows:9 windows x86 arch:x86

8fa0671f369d1a83db8dfcd91052fbd2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WaitForSingleObject
FormatMessageW
LocalFree
GetCurrentProcessId
WaitForSingleObject
GetModuleFileNameA
GetCommandLineA
GetModuleHandleW
GetProcessHeap
GetProcessHeap
SetEvent
QueryPerformanceCounter
FormatMessageW
GetCurrentProcessId
GetModuleHandleA
GetModuleHandleW
GetCommandLineA
FormatMessageW
GetCommandLineW
WaitForSingleObject
LocalFree
GetModuleFileNameA
FormatMessageW
GetTickCount
GetCurrentProcessId
MultiByteToWideChar
WaitForSingleObject
GetACP
GetACP
FormatMessageW
SetUnhandledExceptionFilter
WaitForSingleObject
QueryPerformanceCounter
GetModuleFileNameA
FormatMessageW
GetCurrentProcessId
VirtualFree
GetCommandLineW
LocalAlloc
LocalAlloc
WaitForSingleObject
GetTickCount
LocalAlloc
GetCurrentProcessId
GetCurrentProcess
SetEvent
GetCurrentThreadId
GetCommandLineA
SetEvent
QueryPerformanceCounter
FormatMessageW
FormatMessageW
GetACP
GetProcessHeap
SetUnhandledExceptionFilter
FormatMessageW
GetModuleHandleA
SleepEx
LocalFree
QueryPerformanceCounter
GetCurrentProcess
GetModuleHandleA
MultiByteToWideChar
LocalAlloc
LocalAlloc
GetCommandLineA
GetCurrentProcess
SetUnhandledExceptionFilter
GetCurrentThreadId
GetModuleHandleW
QueryPerformanceCounter
GetACP
SetUnhandledExceptionFilter
GetProcessHeap
GetTickCount
QueryPerformanceCounter
GetProcessHeap
GetModuleHandleA
GetTickCount
GetCommandLineW
GetCommandLineW
VirtualFree
GetCurrentThreadId
SetUnhandledExceptionFilter
GetCommandLineW
GetACP
GetCurrentProcess
QueryPerformanceCounter
SetUnhandledExceptionFilter
VirtualFree
GetCurrentProcessId
MultiByteToWideChar
GetCommandLineW
LocalAlloc

gdi32

GetDeviceCaps
PatBlt
GetObjectW
BitBlt
BitBlt
GetObjectW
SelectObject
GetTextMetricsW
SelectObject
GetDeviceCaps
GetTextMetricsW
BitBlt
GetStockObject
CreateCompatibleDC
BitBlt
CreateCompatibleDC
CreateCompatibleDC
DeleteDC
GetStockObject
GetTextMetricsW
DeleteObject
GetDeviceCaps
BitBlt
CreateCompatibleBitmap
DeleteObject
SelectObject
CreateCompatibleBitmap
GetStockObject
GetStockObject
LineTo
GetTextMetricsW
SelectObject
GetStockObject
MoveToEx
GetStockObject
SetTextColor
BitBlt
LineTo
DeleteObject
SetTextColor
DeleteObject
MoveToEx
DeleteObject
SelectObject
GetDeviceCaps
DeleteObject
MoveToEx
SelectObject
DeleteDC
GetStockObject
MoveToEx
LineTo
PatBlt
GetStockObject
DeleteDC
MoveToEx
CreateCompatibleDC
SetTextColor
PatBlt
SetTextColor
CreateCompatibleDC
CreateCompatibleBitmap
GetStockObject

ntdll

NtAllocateVirtualMemory

user32

SetTimer
PostMessageW
SendMessageW
GetMessageW
DestroyWindow
LoadIconW
GetDlgItem
ShowWindow
PostMessageW
DestroyWindow
GetDC
DefWindowProcW
ReleaseDC
GetWindowRect
ShowWindow
DefWindowProcW
GetMessageW
DefWindowProcW
DefWindowProcW
CreateWindowExW
LoadIconW
GetMessageW
ReleaseDC
DestroyWindow
ReleaseDC
CreateWindowExW
SendMessageW
ShowWindow
LoadIconW
SendMessageW
GetMessageW
GetSystemMetrics
ReleaseDC
ShowWindow
GetDC
GetWindowRect
PostMessageW
ShowWindow
DestroyWindow
GetMessageW
GetDC
DefWindowProcW
GetWindowRect
ReleaseDC
GetWindowRect
GetSystemMetrics
GetSystemMetrics
GetDlgItem
GetDC
GetMessageW
GetDlgItem
CreateWindowExW
GetDlgItem
DestroyWindow
GetDC
LoadIconW
GetSystemMetrics
GetWindowRect
LoadIconW
GetMessageW
CreateWindowExW
DefWindowProcW
LoadIconW
GetSystemMetrics
SetTimer
PostMessageW
SetTimer
GetDlgItem
SetTimer
LoadIconW
GetWindowRect
GetMessageW
DefWindowProcW
GetDC
SendMessageW
GetSystemMetrics
LoadIconW
PostMessageW
GetSystemMetrics
SendMessageW
SetTimer
GetDlgItem
DestroyWindow
ShowWindow
DefWindowProcW
GetDlgItem
GetMessageW
SendMessageW
PostMessageW
DestroyWindow
LoadIconW
GetMessageW
SetTimer
DefWindowProcW
GetSystemMetrics
GetWindowRect

Sections

.data
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 106KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8fa0671f369d1a83db8dfcd91052fbd2

Headers

File Characteristics

Imports

kernel32

gdi32

ntdll

user32

Sections

.data Size: 24KB - Virtual size: 24KB

.rdata Size: 6KB - Virtual size: 8KB

.data Size: 106KB - Virtual size: 108KB

.rsrc Size: 2KB - Virtual size: 124KB

.data
Size: 24KB - Virtual size: 24KB

.rdata
Size: 6KB - Virtual size: 8KB

.data
Size: 106KB - Virtual size: 108KB

.rsrc
Size: 2KB - Virtual size: 124KB