77e50e0d38db8bc7c98d9362bc6b3a47_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

77e50e0d38db8bc7c98d9362bc6b3a47_JaffaCakes118
Size

43KB
MD5

77e50e0d38db8bc7c98d9362bc6b3a47
SHA1

76231c4c7ccb65d2034e8092ebe3a4deba9bedc8
SHA256

25e3bc2fb9eb9e172ba008443f07289801daf2b61f2b530357f4beebca35d0e4
SHA512

c285e5e75d0167a5e0f45c163e91aba7ada09be6caed72ed56d7612a69cf1e5dd11ca4f8f860ff77a06ad0c148d5db9ba8a19c79a6a7d140c60c8b09bb1cb61a
SSDEEP

768:kW6JMhwooCWQh+2J5jYCLMhwcKM5MwMWEBvxMhLbinem:k5JqHcQNJtq/KObPEJxqLbFm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
77e50e0d38db8bc7c98d9362bc6b3a47_JaffaCakes118

Files

77e50e0d38db8bc7c98d9362bc6b3a47_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a6030b2d184de77a212c7c7027d19e39

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnterCriticalSection
LeaveCriticalSection
GetPrivateProfileStringW
GetPrivateProfileSectionW
DeleteCriticalSection
GetSystemTimeAsFileTime
WritePrivateProfileStringW
GetCurrentThreadId
IsDebuggerPresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetModuleHandleW
VirtualAlloc

user32

LoadStringW

advapi32

RegOpenKeyExW
RegCloseKey
RegSetValueExW

ole32

CoUninitialize
StringFromGUID2
CoCreateGuid
CoInitialize

mscms

CreateColorTransformA
DeleteColorTransform
IsColorProfileTagPresent
UnregisterCMMA
GetStandardColorSpaceProfileA
GetStandardColorSpaceProfileW
TranslateColors
SetColorProfileHeader
GetColorDirectoryW
TranslateBitmapBits

ddraw

CompleteCreateSysmemSurface
DllCanUnloadNow

Sections

.text
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.Mone
Size: 512B - Virtual size: 160B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.mIL
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.VVZhE
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.lEhS
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.YCd
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 12KB - Virtual size: 158KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a6030b2d184de77a212c7c7027d19e39

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

ole32

mscms

ddraw

Sections

.text Size: 18KB - Virtual size: 17KB

.Mone Size: 512B - Virtual size: 160B

.mIL Size: 1KB - Virtual size: 1KB

.rdata Size: 1KB - Virtual size: 1KB

.VVZhE Size: 1024B - Virtual size: 1KB

.lEhS Size: 1KB - Virtual size: 1KB

.YCd Size: 1024B - Virtual size: 1KB

.data Size: 12KB - Virtual size: 158KB

.rsrc Size: 4KB - Virtual size: 4KB

.text
Size: 18KB - Virtual size: 17KB

.Mone
Size: 512B - Virtual size: 160B

.mIL
Size: 1KB - Virtual size: 1KB

.rdata
Size: 1KB - Virtual size: 1KB

.VVZhE
Size: 1024B - Virtual size: 1KB

.lEhS
Size: 1KB - Virtual size: 1KB

.YCd
Size: 1024B - Virtual size: 1KB

.data
Size: 12KB - Virtual size: 158KB

.rsrc
Size: 4KB - Virtual size: 4KB