0378cb829c2c5ea83b9c6376db6c40ae_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0378cb829c2c5ea83b9c6376db6c40ae_JaffaCakes118
Size

147KB
MD5

0378cb829c2c5ea83b9c6376db6c40ae
SHA1

f9cf940cb0e4c469a5157b3a363294a287efb8c0
SHA256

c7aff68d53e6b369853e94b1536b46707c36372eef9f999cff6354ddd2a6a1df
SHA512

f0b35c98e4ca13d13c0cb4a279d4e2f100fe7a8e72fe3651f0aa7e3aa2ec6e8d2b39bd2009ecba8f8bb1e7d1ec363e02ded775ae16b4cfd33e2d543a25fee3ea
SSDEEP

3072:elOIMYF7ROVIWSqp4/Yn+MScizy3+B2FxKu6KYpJ80SFUL6OF/Hq:ek4Ooqp8aS0e2Ku6R8/rOhq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0378cb829c2c5ea83b9c6376db6c40ae_JaffaCakes118

Files

0378cb829c2c5ea83b9c6376db6c40ae_JaffaCakes118
.exe windows:7 windows x86 arch:x86

75fc767a709352a75f84e452eb5b382b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

QueryPerformanceCounter
GetCurrentProcess
SetUnhandledExceptionFilter
GetCurrentThreadId
GetCommandLineA
GetCommandLineA
WaitForSingleObject
GetACP
GetCommandLineW
GetCurrentThreadId
LocalAlloc
WaitForSingleObject
GetCurrentProcess
GetModuleHandleA
WaitForSingleObject
FormatMessageW
GetModuleHandleW
GetCommandLineW
VirtualFree
GetCurrentProcess
GetCurrentProcessId
VirtualFree
FormatMessageW
WaitForSingleObject
GetCurrentThreadId
QueryPerformanceCounter
FormatMessageW
GetModuleHandleA
WaitForSingleObject
GetCurrentThreadId
LocalFree
LocalFree
GetACP
FormatMessageW
GetCurrentThreadId
GetCurrentProcess
GetModuleFileNameA
GetModuleHandleW
GetModuleHandleW
VirtualFree
LocalFree
GetModuleFileNameA
MultiByteToWideChar
GetTickCount
GetModuleHandleA
MultiByteToWideChar
FormatMessageW
GetModuleFileNameA
GetTickCount
GetModuleFileNameA
SetUnhandledExceptionFilter
GetCurrentThreadId
GetProcessHeap
GetTickCount
GetModuleHandleA
LocalAlloc
MultiByteToWideChar
QueryPerformanceCounter
GetTickCount
LocalFree
GetTickCount
GetCommandLineW
GetCurrentThreadId
GetCommandLineW
GetCurrentProcess
GetModuleHandleW
GetProcessHeap
SleepEx
SetEvent
MultiByteToWideChar
GetModuleFileNameA
GetModuleFileNameA
MultiByteToWideChar
SetUnhandledExceptionFilter
GetTickCount
MultiByteToWideChar
MultiByteToWideChar
GetCurrentProcess
GetModuleFileNameA
LocalFree
GetTickCount
GetModuleFileNameA
GetACP
MultiByteToWideChar
SetUnhandledExceptionFilter
SetEvent
GetModuleFileNameA
GetModuleHandleW
LocalFree
GetACP
VirtualFree
GetCommandLineA
GetModuleHandleA
VirtualFree
GetCommandLineA
GetACP
GetTickCount
SetEvent
GetModuleFileNameA

gdi32

GetTextMetricsW
LineTo
SetTextColor
PatBlt
MoveToEx
MoveToEx
GetTextMetricsW
GetObjectW
CreateCompatibleBitmap
GetObjectW
GetObjectW
LineTo
CreateCompatibleDC
SelectObject
BitBlt
GetObjectW
SelectObject
GetObjectW
GetStockObject
CreateCompatibleDC
GetTextMetricsW
BitBlt
CreateCompatibleDC
LineTo
GetDeviceCaps
GetObjectW
SetTextColor
CreateCompatibleBitmap
SelectObject
LineTo
GetDeviceCaps
SetTextColor
CreateCompatibleDC
GetTextMetricsW
PatBlt
BitBlt
GetTextMetricsW
GetTextMetricsW
SetTextColor
CreateCompatibleDC
CreateCompatibleBitmap
GetObjectW
CreateCompatibleBitmap
SelectObject
CreateCompatibleDC
PatBlt
LineTo
CreateCompatibleDC
DeleteObject
BitBlt
MoveToEx
DeleteObject
DeleteObject
SetTextColor
LineTo
MoveToEx
GetTextMetricsW
GetObjectW
LineTo
LineTo
PatBlt
BitBlt
MoveToEx
PatBlt
BitBlt
DeleteDC
GetDeviceCaps
DeleteObject
GetStockObject
LineTo
SelectObject
CreateCompatibleBitmap
DeleteObject
GetStockObject
GetStockObject
GetObjectW
SetTextColor
BitBlt
SetTextColor
BitBlt
BitBlt
LineTo
CreateCompatibleDC
GetStockObject
SelectObject
GetObjectW
GetDeviceCaps
CreateCompatibleDC
GetDeviceCaps
MoveToEx
DeleteObject
SetTextColor
BitBlt
SelectObject
DeleteDC
MoveToEx
GetObjectW
CreateCompatibleBitmap
CreateCompatibleBitmap
BitBlt
SetTextColor
PatBlt
BitBlt
PatBlt
GetObjectW
LineTo

user32

LoadIconW
SendMessageW
DefWindowProcW
SetTimer
ReleaseDC
SetTimer
SendMessageW
LoadIconW
GetWindowRect
ShowWindow
GetSystemMetrics
GetSystemMetrics
GetMessageW
CreateWindowExW
SetTimer
CreateWindowExW
PostMessageW
DefWindowProcW
SendMessageW
PostMessageW
CreateWindowExW
ShowWindow
GetDC
DestroyWindow
GetDC
PostMessageW
LoadIconW
DestroyWindow
SetTimer
GetSystemMetrics
SendMessageW
GetWindowRect
ShowWindow
DefWindowProcW
DefWindowProcW
PostMessageW
DestroyWindow
GetMessageW
GetSystemMetrics
LoadIconW
DestroyWindow
ShowWindow
LoadIconW
ShowWindow
GetMessageW
ShowWindow
GetMessageW
ShowWindow
ShowWindow
GetMessageW
DestroyWindow
GetDlgItem
GetDC
LoadIconW
SendMessageW
SendMessageW
GetWindowRect
GetMessageW
GetDlgItem
CreateWindowExW
ShowWindow
GetWindowRect
GetDlgItem
DestroyWindow
SendMessageW
DestroyWindow
SendMessageW
LoadIconW
ShowWindow
ShowWindow
DefWindowProcW
DefWindowProcW
DefWindowProcW
CreateWindowExW
ShowWindow
SetTimer
DestroyWindow
GetDC
DefWindowProcW
GetMessageW
LoadIconW
DefWindowProcW
SetTimer
ShowWindow
LoadIconW
GetSystemMetrics
SetTimer
SetTimer
GetMessageW
ShowWindow
SendMessageW
GetSystemMetrics
DefWindowProcW
ReleaseDC
GetDC
CreateWindowExW
GetDlgItem
ShowWindow
DestroyWindow
DefWindowProcW
LoadIconW
CreateWindowExW
ShowWindow
DefWindowProcW
GetMessageW
SendMessageW
ReleaseDC
GetSystemMetrics
ShowWindow
PostMessageW
GetWindowRect
GetDC
PostMessageW
PostMessageW

ntdll

NtAllocateVirtualMemory

Sections

.data
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 108KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

75fc767a709352a75f84e452eb5b382b

Headers

File Characteristics

Imports

kernel32

gdi32

user32

ntdll

Sections

.data Size: 28KB - Virtual size: 28KB

.data Size: 8KB - Virtual size: 8KB

.data Size: 108KB - Virtual size: 108KB

.rsrc Size: 2KB - Virtual size: 124KB

.data
Size: 28KB - Virtual size: 28KB

.data
Size: 8KB - Virtual size: 8KB

.data
Size: 108KB - Virtual size: 108KB

.rsrc
Size: 2KB - Virtual size: 124KB