008fb40e211638d8a4bd1483ea7ed2d1_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

008fb40e211638d8a4bd1483ea7ed2d1_JaffaCakes118
Size

168KB
MD5

008fb40e211638d8a4bd1483ea7ed2d1
SHA1

d943527819dea5ec4c6645f0beb272c28218b7b1
SHA256

1accbb1a35e99fb60116254dfb0cde42708ca41e8c01385699c820ace1d86604
SHA512

64dffb9624fc19cee5f5f3f5f68265763312fbf27f7342ad014d180b4b1c5138e343916bc94f36a0150819a344321b0fb64883a1cb90eca14af194f9b96a74fa
SSDEEP

3072:Z4AbGM7/q5W+z4h9CxYvkYxMMtTSmRhT3nVb/5oaY:Z5bt71+zQ9BpxMETzRtnVdFY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
008fb40e211638d8a4bd1483ea7ed2d1_JaffaCakes118

Files

008fb40e211638d8a4bd1483ea7ed2d1_JaffaCakes118
.exe windows:10 windows x86 arch:x86

53ae39d5be43bc597144370acee05241

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadIconW
LoadIconW
DefWindowProcW
GetWindowRect
ReleaseDC
ShowWindow
GetWindowRect
CreateWindowExW
DestroyWindow
GetKeyboardState
GetDlgItem
SetTimer
GetMessageW

kernel32

GetProcAddress
ExitProcess
VirtualFree
WaitForSingleObject
GetACP
EnterCriticalSection
CloseHandle
InterlockedDecrement
GetCommandLineA
SetUnhandledExceptionFilter
HeapDestroy
QueryPerformanceCounter
HeapAlloc
GetModuleHandleA
LocalFree
GetProcessHeap
LocalAlloc
InterlockedIncrement
FormatMessageW
HeapReAlloc
GetCurrentProcessId
GetModuleHandleA
FormatMessageW
SetLastError
lstrcmpiW
FreeLibrary
DeleteCriticalSection
GetACP
InterlockedIncrement
lstrcmpiW
SleepEx
VirtualAllocEx
GetCommandLineA
GetModuleFileNameA
MultiByteToWideChar
QueryPerformanceCounter
LoadLibraryA
WaitForSingleObject
GetProcessHeap

gdi32

SetTextColor
SetBkColor
GetTextMetricsW
CreateCompatibleBitmap
ExtTextOutW
GetTextExtentPoint32W
GetStockObject
CreateSolidBrush
CreateFontIndirectW
CreateCompatibleBitmap
CreateCompatibleBitmap
CreateBitmap
GetDeviceCaps
SetBkMode
CreateCompatibleBitmap
ExtTextOutW
GetObjectW
PatBlt
GetStockObject
SetBkColor
CreateSolidBrush
PatBlt
SelectObject
SetTextColor
BitBlt
CreateFontIndirectW
LineTo
TextOutW
SetBkMode
LineTo
CreateBitmap
CreateCompatibleBitmap
GetObjectW
TextOutW
MoveToEx
CreateCompatibleBitmap
GetObjectW
BitBlt
GetTextMetricsW
LineTo
GetTextMetricsW
SetBkColor
SelectObject
GetTextExtentPoint32W
GetTextMetricsW
CreateBitmap
GetStockObject
CreateSolidBrush
DeleteDC

Sections

.text
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

53ae39d5be43bc597144370acee05241

Headers

File Characteristics

Imports

user32

kernel32

gdi32

Sections

.text Size: 16KB - Virtual size: 16KB

.rdata Size: 3KB - Virtual size: 72KB

.data Size: 13KB - Virtual size: 16KB

.data Size: 512B - Virtual size: 4KB

.rsrc Size: 2KB - Virtual size: 4KB

.text
Size: 16KB - Virtual size: 16KB

.rdata
Size: 3KB - Virtual size: 72KB

.data
Size: 13KB - Virtual size: 16KB

.data
Size: 512B - Virtual size: 4KB

.rsrc
Size: 2KB - Virtual size: 4KB