76cb5761ace300ab713dbf843c64adfc_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

76cb5761ace300ab713dbf843c64adfc_JaffaCakes118
Size

28KB
MD5

76cb5761ace300ab713dbf843c64adfc
SHA1

30f3e07790fb4d0066d133706e2f3011087041e1
SHA256

ac50028478ec19ca49bd823c78bf0df650cb209823c82ac381f51c5b044f43f7
SHA512

775ea3a4e93a59ecfb56c64018d36cda94717720284a8cf9bb96066fda82ff25ba8292c930efb0f561c78313c1a9362ef358bb0b433b3ef4d95127e2d412526a
SSDEEP

384:i73FUWUsdlhIvJ23Kkl7uF6FVF26zvNGihE34PXFiydXTHJGHhyQQId1/VXJd+:i3p+J9Q7uMFR5TEai6XTHJYdQId17d

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
76cb5761ace300ab713dbf843c64adfc_JaffaCakes118

Files

76cb5761ace300ab713dbf843c64adfc_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a691322ae49e83d9aa9c49d32a474681

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
GetProcessHeap
LocalAlloc
HeapAlloc
GetProcessHeap
HeapFree
InterlockedExchange
DeleteCriticalSection
DisableThreadLibraryCalls
LocalAlloc
GetModuleFileNameW
LeaveCriticalSection
GetSystemTimeAsFileTime
CreateFileW
ReadFile
GetLastError
InterlockedCompareExchange
QueryPerformanceCounter
lstrlenA
GetProcAddress
lstrlenA
VirtualProtect
LocalAlloc
GetModuleFileNameW
GetProcAddress
GetModuleFileNameW
LocalFree
VirtualProtect
InitializeCriticalSection
InterlockedCompareExchange
GetLastError
LocalAlloc
LoadLibraryW
GetSystemTimeAsFileTime
GetProcessHeap
LeaveCriticalSection
HeapAlloc
InterlockedIncrement
DeleteCriticalSection
GetLastError
LoadLibraryA
CreateThread
InterlockedExchange
GetCurrentProcess
GetModuleFileNameW
UnhandledExceptionFilter
GetModuleHandleA
LocalFree
ReadFile
GetVersionExA
VirtualAlloc
GetVersionExA
GetModuleHandleA
CreateThread

gdi32

Polygon
SetWindowOrgEx
Polygon
CreateBitmapIndirect
GetBkMode
GetWindowExtEx
Polygon
PatBlt
SetWindowExtEx
GetCurrentObject
CreateSolidBrush
BitBlt
CreateRectRgn
SetWindowOrgEx
GetBkColor
CreateRectRgn
GetPixel
CreateFontA
CreateSolidBrush
GetCurrentObject
SetWindowExtEx
CreateDIBSection
SetBrushOrgEx
CreateDIBitmap
GetPixel
SetWindowExtEx
CreateDIBitmap
StretchBlt
CreateDIBSection
SetWindowOrgEx
GetPixel
CreateSolidBrush
GetPixel
CreateDIBSection
SetPixel
GetPixel
BitBlt
GetCurrentObject
CombineRgn
SetPixel
GetBrushOrgEx
GetWindowOrgEx
RoundRect
GetBrushOrgEx
SetTextColor
GetBrushOrgEx
CreateFontA
GetWindowOrgEx
CreateDIBitmap
CreateBitmapIndirect
CreateDIBSection
CreateSolidBrush

Sections

.text
Size: 13KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a691322ae49e83d9aa9c49d32a474681

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

gdi32

Sections

.text Size: 13KB - Virtual size: 16KB

.data Size: 512B - Virtual size: 4KB

.rdata Size: 3KB - Virtual size: 4KB

.rsrc Size: 10KB - Virtual size: 12KB

.text
Size: 13KB - Virtual size: 16KB

.data
Size: 512B - Virtual size: 4KB

.rdata
Size: 3KB - Virtual size: 4KB

.rsrc
Size: 10KB - Virtual size: 12KB