781ae1fa5d262011ec7af59c869c2201_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

781ae1fa5d262011ec7af59c869c2201_JaffaCakes118
Size

61KB
MD5

781ae1fa5d262011ec7af59c869c2201
SHA1

34f22046afae2de76d8a9d6bef6916360d52c0d7
SHA256

eb9a0ae52cde17552220b9c47438d51a559b01669a57e855f815c60150fecbb5
SHA512

d83594cf5f07697e82dc5e37de226d1e89d996ff0394d4be5c69ae20716b676d8a7a3676ab0dfff455dd5d86918fbbbec67e28ad87dffbab092ad740d9dd9e1f
SSDEEP

1536:Mg5CH+lpsmkaMDgA4sTHChm0dfzT/bwRTY:D5CAsmRA4Kifdf3Cs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
781ae1fa5d262011ec7af59c869c2201_JaffaCakes118

Files

781ae1fa5d262011ec7af59c869c2201_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ab43e178cbc36b2b2acb69b3656c9ed9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
EnterCriticalSection
Sleep
UnhandledExceptionFilter
GetModuleHandleW
lstrcpyW
GetLastError
InterlockedIncrement
WideCharToMultiByte
LocalAlloc
DeleteCriticalSection
TerminateProcess
Sleep
MultiByteToWideChar
MultiByteToWideChar
VirtualProtect
SetEvent
LocalFree
WaitForSingleObject
VirtualAlloc
ReadFile
SetFilePointer
HeapAlloc
MultiByteToWideChar
VirtualAlloc
lstrlenW
GetStartupInfoA
WideCharToMultiByte
GetStartupInfoW
GetCurrentProcess
GetProcAddress
GetStartupInfoA
GetModuleHandleA
SetUnhandledExceptionFilter
InitializeCriticalSection
GetModuleHandleA
FreeLibrary
HeapReAlloc
GetTickCount
HeapDestroy
GetCommandLineW
GetACP
GetProcAddress
MultiByteToWideChar
SetFilePointer
LeaveCriticalSection
VirtualAlloc
GetProcAddress
ExitProcess
GetModuleHandleW
ExitProcess
UnhandledExceptionFilter
GetVersionExA
lstrcpyW
LoadLibraryW
GetTickCount
GetCurrentProcessId
GetVersionExA
lstrlenW
lstrcmpiW
HeapAlloc
GetLastError
GetTickCount
CreateFileW
VirtualProtect
GetProcessHeap
GetModuleFileNameA
UnhandledExceptionFilter
DeleteCriticalSection
GetACP

user32

CreateWindowExW
DestroyWindow
GetSysColorBrush
PostMessageW
ExitWindowsEx
CheckRadioButton
ShowWindow
SystemParametersInfoW
SetTimer
PeekMessageW
GetMenu
ScreenToClient
DrawIcon
CheckRadioButton
MapWindowPoints
CallWindowProcW
CloseDesktop
ScreenToClient
MapWindowPoints
WinHelpW
OpenInputDesktop
InvalidateRect
SetActiveWindow
CloseClipboard
IsIconic
LoadMenuW
LoadCursorA
CheckDlgButton
IsDialogMessageW
MapWindowPoints
CreateWindowExA
KillTimer
GetClassNameW
GetMenuItemCount
CharNextW
PostThreadMessageW
GetClientRect
ShowWindow
SetDlgItemTextA
TranslateMessage
CreateWindowExW
MsgWaitForMultipleObjects
CallWindowProcW
InvalidateRect
SetScrollInfo
IsDialogMessageW
GetWindowRect
LoadAcceleratorsW
GetDesktopWindow
ReleaseDC
EnableMenuItem
IsWindow
GetWindowRect
GetSysColorBrush
PeekMessageA
MessageBeep
IsDialogMessageW
DrawFocusRect
PostMessageW
ReleaseCapture
MessageBeep
PostThreadMessageW
EnumWindows
wsprintfA
IsZoomed
GetWindowLongA
CheckMenuItem
ExitWindowsEx
GetProcessWindowStation
InflateRect
LoadIconA
SystemParametersInfoW
DeferWindowPos
DrawIconEx
DestroyWindow
BeginDeferWindowPos
GetWindowRect

gdi32

CreateCompatibleBitmap
CreateBitmap
BitBlt
SetBkColor
RestoreDC
SaveDC
PatBlt
SaveDC
ExtTextOutW
PatBlt
SetWindowExtEx
CreateSolidBrush
SetTextColor
GetTextExtentPoint32W
SetBkColor
CreateSolidBrush
SetTextAlign
TranslateCharsetInfo
BitBlt
DeleteObject
MoveToEx
Rectangle
DeleteDC
MoveToEx
SetTextAlign
CreateFontIndirectW
GetObjectA
SetBkColor
DeleteObject
SetBkColor
CreateFontIndirectW
SetTextAlign
CreateSolidBrush
SelectObject
CreatePatternBrush
CreatePen
SetTextAlign
GetTextExtentPoint32W
SetBkColor
SetBkColor
BitBlt
RealizePalette
LineTo
SaveDC
CreateCompatibleBitmap
DeleteDC
DeleteObject
CreatePen
CreateCompatibleBitmap
GetTextExtentPoint32W
CreateCompatibleBitmap
CreateRectRgn
TranslateCharsetInfo
GetStockObject
TranslateCharsetInfo
ExtTextOutW
DeleteObject
PatBlt
CreateCompatibleDC
LineTo
GetTextExtentPoint32W
DeleteObject
CreateCompatibleBitmap
TextOutW
CreateFontIndirectW
DeleteObject
GetTextMetricsW
SetStretchBltMode
StretchBlt
DeleteObject
CreateFontIndirectW

Sections

.text
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

ab43e178cbc36b2b2acb69b3656c9ed9

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 6KB - Virtual size: 8KB

.data Size: 44KB - Virtual size: 44KB

.rdata Size: 5KB - Virtual size: 8KB

.rsrc Size: 4KB - Virtual size: 32KB

.text
Size: 6KB - Virtual size: 8KB

.data
Size: 44KB - Virtual size: 44KB

.rdata
Size: 5KB - Virtual size: 8KB

.rsrc
Size: 4KB - Virtual size: 32KB