820523e44b1b2ab2aabeb745d51585b5_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

820523e44b1b2ab2aabeb745d51585b5_JaffaCakes118
Size

224KB
MD5

820523e44b1b2ab2aabeb745d51585b5
SHA1

79bd7d42074a57fcd4e3b99ac5d5149fb5b6e7ba
SHA256

3843396a6a36e8bc08d81cd117f7a01f271912bb5a6ce0153abc1d94e8423ea6
SHA512

e27370aedf9fabd7420e17ca732b3b1ec787f7c7b1f6ad613d2af3e651a0413c60f19081f0c080a11675e0294706a5d51c315ee7a319b1317c9c892468ba3083
SSDEEP

3072:NIkqotgnXNuUcoFoplGZC4D4ZtROy5C4OUZAXWOXHfVs39:Cx3epAZC4D4ZLQ1Um5Xts

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
820523e44b1b2ab2aabeb745d51585b5_JaffaCakes118

Files

820523e44b1b2ab2aabeb745d51585b5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

62e46abd07ac82c8396c9ad9fb87ab5f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStringTypeA
LoadLibraryA
LCMapStringW
GetOEMCP
GetACP
GetCPInfo
GetStringTypeW
FlushFileBuffers
FindResourceW
GetLastError
SizeofResource
LoadResource
SetStdHandle
LCMapStringA
GetProcAddress
LockResource
MultiByteToWideChar
SetFilePointer
HeapFree
HeapAlloc
HeapReAlloc
WideCharToMultiByte
RtlUnwind
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
TerminateProcess
GetCurrentProcess
HeapSize
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
WriteFile
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
CloseHandle

user32

SetWindowTextW
SendMessageA
SendDlgItemMessageW
MessageBoxW
EndDialog
SendMessageW
GetWindowRect
SetWindowPos
EnableWindow
DialogBoxParamW
GetDlgItem

gdi32

DeleteObject

advapi32

RegCreateKeyExW
RegSetValueExW
RegOpenKeyW
RegQueryValueExW
RegCloseKey

ddraw

DirectDrawCreateEx

comctl32

ord17

d3d8

Direct3DCreate8

Sections

.text
Size: 36KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 168KB - Virtual size: 188KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

62e46abd07ac82c8396c9ad9fb87ab5f

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

ddraw

comctl32

d3d8

Sections

.text Size: 36KB - Virtual size: 33KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 12KB - Virtual size: 19KB

.rsrc Size: 168KB - Virtual size: 188KB

.text
Size: 36KB - Virtual size: 33KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 12KB - Virtual size: 19KB

.rsrc
Size: 168KB - Virtual size: 188KB