77b3227f5ad7acc79d09da59f338f0e0_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

77b3227f5ad7acc79d09da59f338f0e0_JaffaCakes118
Size

248KB
MD5

77b3227f5ad7acc79d09da59f338f0e0
SHA1

1d26a2879a8c43bcab6eeae19a3b9bc36dc86de3
SHA256

fe589d296494ce786bd6ed1cd716a117dd3ca8692a29bfd3b35ec7fd244588ff
SHA512

4b3dba9d4542c76ab7629566121a70a7937a7dffc505bc2faff27f41714e3221141031347768e94b852d6e3cb933db02eb891016dcacfb9bfa144f7e7ab3e7bf
SSDEEP

6144:QJswM8OY+muZKzppPZfuS27X4tGQpPTJZ/EI:8sSuw9pnY6Go7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
77b3227f5ad7acc79d09da59f338f0e0_JaffaCakes118

Files

77b3227f5ad7acc79d09da59f338f0e0_JaffaCakes118
.exe windows:5 windows x86 arch:x86

a90b66b31010885e7a2bd552db9f13aa

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadIconW
CreateCursor
LookupIconIdFromDirectory
DrawIcon
GetSystemMetrics
ScreenToClient
BringWindowToTop
ToUnicodeEx
CharToOemA
GetClassInfoW
RemovePropW
GetMessageW
EnumWindows
GetClassLongA
GetSysColor
GetDlgItemTextW
SetWindowLongW
ScrollWindow
CharLowerA
RegisterWindowMessageW
GetKeyNameTextW
CloseDesktop
TranslateMessage
LoadStringW
GetDC
EndPaint
CreateDialogParamA
AllowSetForegroundWindow
DrawEdge
LoadImageA
SetForegroundWindow
EnableWindow
AdjustWindowRectEx
RemoveMenu
ModifyMenuW
DialogBoxParamW

ntdll

memset

gdi32

SetStretchBltMode
OffsetRgn
GetObjectA
Rectangle
SetTextColor
GetSystemPaletteUse
SetWindowOrgEx
GetClipBox
CreateICW
EnumFontFamiliesExW
CreateDiscardableBitmap
CreateSolidBrush
CreatePolygonRgn
CreateFontIndirectW
GetTextExtentPoint32A
StartDocW
GetTextColor

kernel32

GetAtomNameA
SearchPathA
GetVersionExA
CopyFileW
GetTimeZoneInformation
CallNamedPipeW
LoadLibraryExA
AddAtomA
CreateDirectoryA
GetProcAddress
GetWindowsDirectoryW
GetBinaryTypeA
MapViewOfFile
EnumResourceNamesW
FindNextFileW
lstrcmpW
ReleaseSemaphore

Exports

Exports

?NDJndjklIODUiuodjilkjDUIOioudIUODOI@@YGKEPA_WG@Z

Sections

.text
Size: 110KB - Virtual size: 109KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.point
Size: 512B - Virtual size: 360B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nfodat
Size: 1024B - Virtual size: 972B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.temp
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.port
Size: 47KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a90b66b31010885e7a2bd552db9f13aa

Headers

File Characteristics

Imports

user32

ntdll

gdi32

kernel32

Exports

Exports

Sections

.text Size: 110KB - Virtual size: 109KB

.point Size: 512B - Virtual size: 360B

.data Size: 1KB - Virtual size: 1KB

.rdata Size: 84KB - Virtual size: 84KB

.nfodat Size: 1024B - Virtual size: 972B

.temp Size: - Virtual size: 4KB

.port Size: 47KB - Virtual size: 91KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 110KB - Virtual size: 109KB

.point
Size: 512B - Virtual size: 360B

.data
Size: 1KB - Virtual size: 1KB

.rdata
Size: 84KB - Virtual size: 84KB

.nfodat
Size: 1024B - Virtual size: 972B

.temp
Size: - Virtual size: 4KB

.port
Size: 47KB - Virtual size: 91KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 2KB - Virtual size: 1KB