00fd12be9843b8948846b83af4debff4_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

00fd12be9843b8948846b83af4debff4_JaffaCakes118
Size

23KB
MD5

00fd12be9843b8948846b83af4debff4
SHA1

04aceb30e25c6b1f5cc211f27af9a096b21c17da
SHA256

afb899bec1adcbc74d96bbffd1eae440855e6a696fa6b7c1749fd53baeb3e806
SHA512

215db365d1d0168f9f006713a1dd28cea9018217fd3c6014b3ddf07a47ea74bafc9c6bb37a59cf86ad74df43e39f5bbc805602fc32a74aca8092632a053a4094
SSDEEP

384:NRCINIcaefJoX2dIMqmzdj0OnT1eE3l/Z1YbfCBUSCm3TZ4ZE6+Lhz:3CIyefaGdIMqmZj1eE1R1gqXCm3TKFi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
00fd12be9843b8948846b83af4debff4_JaffaCakes118

Files

00fd12be9843b8948846b83af4debff4_JaffaCakes118
.exe windows:5 windows x86 arch:x86

e89c1d0c724a505388212c79dcb77b6c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateThread
GetCurrentProcessId
VirtualAlloc
GetProcessHeap
InterlockedCompareExchange
LocalFree
GetProcessHeap
CreateThread
GetCurrentProcessId
UnhandledExceptionFilter
lstrcmpiW
CloseHandle
EnterCriticalSection
GetModuleFileNameW
lstrlenA
SetLastError
CreateFileW
HeapFree
DeleteCriticalSection
GetModuleFileNameA
InterlockedIncrement
GetProcessHeap
GetProcessHeap
InterlockedCompareExchange
GetLastError
InterlockedDecrement
VirtualAlloc
DisableThreadLibraryCalls
GetVersionExA
MultiByteToWideChar
lstrcmpiW
GetModuleHandleA
lstrcmpiW
GetCurrentProcess
DeleteCriticalSection
InterlockedDecrement
GetTickCount
LocalAlloc
UnhandledExceptionFilter
InterlockedIncrement
CreateEventW
lstrlenA
LeaveCriticalSection
LocalAlloc
CloseHandle
HeapAlloc
UnhandledExceptionFilter
GetProcAddress
GetVersionExA
MultiByteToWideChar
GetModuleFileNameA
LoadLibraryW
InterlockedIncrement
GetVersionExA

user32

GetSystemMetrics
GetDC
KillTimer
GetDesktopWindow
GetWindowLongW
CharNextW
DialogBoxParamW
GetDC
DefWindowProcW
DialogBoxParamW
SetWindowTextW
CreateWindowExW
PostMessageW
GetParent
wsprintfA
GetClientRect
KillTimer
SetCursor
LoadStringW
GetDlgItem
GetFocus
IsWindow
MessageBoxW
PostQuitMessage
LoadCursorW
GetParent
PeekMessageW
SetWindowLongW
SendMessageW
DialogBoxParamW
PostQuitMessage
DispatchMessageW
MessageBoxW
GetParent
SendDlgItemMessageW
SetTimer
PostQuitMessage
GetWindowRect
SetFocus
DispatchMessageW
DialogBoxParamW
LoadIconW
DestroyWindow
GetParent
PostMessageW
GetWindowLongW
LoadIconW
KillTimer
GetClientRect
ShowWindow
GetSystemMetrics
GetSystemMetrics

Sections

.text
Size: 18KB - Virtual size: 20KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e89c1d0c724a505388212c79dcb77b6c

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 18KB - Virtual size: 20KB

.data Size: 512B - Virtual size: 4KB

.rdata Size: 3KB - Virtual size: 4KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 18KB - Virtual size: 20KB

.data
Size: 512B - Virtual size: 4KB

.rdata
Size: 3KB - Virtual size: 4KB

.rsrc
Size: 1024B - Virtual size: 4KB