8217817816cb0b92806fd4d7d0b16ced_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

8217817816cb0b92806fd4d7d0b16ced_JaffaCakes118
Size

308KB
MD5

8217817816cb0b92806fd4d7d0b16ced
SHA1

68b44ce40581920119deaa1a1af637a956d5263c
SHA256

8fcb59c760c2d766e9bb8826766bd34a3cd33e174ad55eb6f8a1d06960749563
SHA512

0350a9f33e6285f6ce24377a666a40e0bc0793b29b68953aecc47e2a811234e7e55f9a789d61358b3ce28b40d7a137bc28a524ec8ac2281d5feebba3f0eec724
SSDEEP

6144:o5CI+M7IRwBX2lP3Nyl4oMJlv08pxQX5/YgghUoh+0bm7B2daKxXof:osRSCP35NscwZzUUodbmB2v

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8217817816cb0b92806fd4d7d0b16ced_JaffaCakes118

Files

8217817816cb0b92806fd4d7d0b16ced_JaffaCakes118
.exe windows:9 windows x86 arch:x86

e3bde6d1cc94eb2ee4df750a46c7d307

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

ole32

CoUninitialize
CLSIDFromString
WriteClassStg
ReleaseStgMedium
CoInitialize
CoTaskMemFree

user32

FrameRect
InvalidateRect
LoadIconW
SetActiveWindow
IntersectRect
GetSysColor
SetCapture
GetClientRect
GetDlgItemInt
LoadBitmapW
HideCaret
SetClassLongW
GrayStringW
ShowCursor
LoadStringW
GetKeyState
SetRect
GetMenu
GetCursorPos
GetKeyboardLayout
GetDC
CheckDlgButton
IsRectEmpty
BringWindowToTop
RegisterClipboardFormatW
ReleaseDC
GetSubMenu
DrawTextW
SendMessageW
wsprintfW
DrawFocusRect
wvsprintfW
GetCapture
ReleaseCapture
PostMessageW
SetCaretPos
PtInRect

kernel32

CreateDirectoryW
GlobalReAlloc
lstrcpyW
GetCurrentThreadId
GetLocaleInfoW
SetEndOfFile
InterlockedIncrement
CreateFileW
LoadLibraryA
IsDBCSLeadByte
HeapSize
SetErrorMode
GetProcessHeaps
VirtualAlloc
lstrcatW
FileTimeToLocalFileTime
GetFileAttributesW
GetNumberFormatW
RaiseException
GetLastError
GetSystemTimeAsFileTime
GlobalAlloc
GetFileSize
GetExitCodeThread
lstrlenW
CloseHandle
GetFileTime
GlobalUnlock
VirtualFree
InterlockedExchange
GetCurrentProcess
GetModuleHandleA
InterlockedDecrement
FreeLibrary
GlobalLock
GetTempPathW
lstrcmpW
GetProcessHeap
GetTimeFormatW
GetModuleHandleW
HeapAlloc

gdi32

CreateBitmap
SetMapMode
GetDIBits
SetBkColor
SetStretchBltMode
CreateDIBitmap
GetCurrentObject
SetViewportExtEx
GetNearestPaletteIndex
GetPaletteEntries
SetBkMode
SelectObject
Polyline
EnumFontFamiliesW
GetStockObject
StretchDIBits
GetTextColor
PlayMetaFile
GetBkMode
CreateHalftonePalette
TranslateCharsetInfo
CreateCompatibleBitmap
BitBlt
RectVisible
CreateRectRgnIndirect
CreatePatternBrush
GetNearestColor
LineTo
MoveToEx

gdiplus

GdipGetImageEncoders
GdiplusStartup
GdipGetImageEncodersSize
GdipSaveImageToStream
GdipCreateBitmapFromFile
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromHBITMAP
GdipSetPropertyItem

Sections

.text
Size: 190KB - Virtual size: 190KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 106KB - Virtual size: 844KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e3bde6d1cc94eb2ee4df750a46c7d307

Headers

DLL Characteristics

File Characteristics

Imports

ole32

user32

kernel32

gdi32

gdiplus

Sections

.text Size: 190KB - Virtual size: 190KB

.data Size: 10KB - Virtual size: 10KB

.rsrc Size: 106KB - Virtual size: 844KB

.text
Size: 190KB - Virtual size: 190KB

.data
Size: 10KB - Virtual size: 10KB

.rsrc
Size: 106KB - Virtual size: 844KB