83ac8758656923c9cbe1b23d47aa469d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

83ac8758656923c9cbe1b23d47aa469d_JaffaCakes118
Size

81KB
MD5

83ac8758656923c9cbe1b23d47aa469d
SHA1

6465f45e09ad36116940335048b08bbb5e0409b9
SHA256

b85379ec451fa31f9a5527cd073557ae1098eb54b0c8c8eea5cd035043f6c70d
SHA512

b5e5f051c87348b6b8b9765b2e3e660950b22aa6b713f77150a3dc1980ec8087c8ffee01943d0832a959453efc8dcce896af8aa137a0c07b439759e35759d091
SSDEEP

1536:rpFsF7YUDz+bwjlNC/OIAbAI5fOKyRtrYkPedPi8fHxU6vW6+DYdDqR1gR6R:r38qhAUYmHZPUfRUCW9DY9O1N

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
83ac8758656923c9cbe1b23d47aa469d_JaffaCakes118

Files

83ac8758656923c9cbe1b23d47aa469d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ec5e48ee4e342f9f3aab80a77add4361

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FormatMessageA
SetFileAttributesW
GetFileTime
FlushViewOfFile
VirtualAlloc
CreateDirectoryA
DeleteFiber
GetProcAddress
VirtualFree
CreateDirectoryExW
GetModuleHandleW
IsBadStringPtrW
GetProcessVersion
GetModuleHandleA
CreatePipe
IsValidCodePage
FormatMessageW
ExitProcess
GetLastError
OpenJobObjectA
LoadLibraryA
OpenSemaphoreA
EnterCriticalSection
MapViewOfFileEx

msvcrt

_adj_fdiv_m32
memcpy
?_query_new_handler@@YAP6AHI@ZXZ
_inp
ispunct
iswalpha
fflush
_mbstrlen
atof
strncpy
_ismbbalpha
_mbsbtype
??_7__non_rtti_object@@6B@
strcpy

user32

GetFocus
GetParent
CheckMenuRadioItem
IsDlgButtonChecked
OffsetRect
EndDialog
GetAncestor
GetClassWord
GetNextDlgTabItem
LoadImageW
EnableWindow
AppendMenuW
InvalidateRect
OpenClipboard
PtInRect
LoadStringW
GetClipboardData
ModifyMenuW
RealGetWindowClass
SetDlgItemInt
EnableMenuItem

gdi32

SetViewportExtEx
SetDIBitsToDevice
CreateCompatibleDC
GetStockObject
CreateFontIndirectW
SetPixel
EqualRgn
CreateRectRgn
SetBrushOrgEx
SetBkColor
GetPixel
LineTo
SetBkMode
SetMapMode

opengl32

glColor4b
glMap1d
glDisableClientState
glPixelStorei
glFrontFace
glLogicOp
glGetTexLevelParameterfv
glTexCoord4sv
glPrioritizeTextures

Exports

Exports

AaqzfqNhqtrnzNmhxbox
RciYjhxRuowbkb

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xpi
Size: 1024B - Virtual size: 644B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ixp
Size: 512B - Virtual size: 17B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pixi
Size: 1024B - Virtual size: 836B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 65KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 72B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ec5e48ee4e342f9f3aab80a77add4361

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

gdi32

opengl32

Exports

Exports

Sections

.text Size: 4KB - Virtual size: 3KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 5KB - Virtual size: 4KB

.xpi Size: 1024B - Virtual size: 644B

.ixp Size: 512B - Virtual size: 17B

.pixi Size: 1024B - Virtual size: 836B

.rsrc Size: 65KB - Virtual size: 65KB

.reloc Size: 512B - Virtual size: 72B

.text
Size: 4KB - Virtual size: 3KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 5KB - Virtual size: 4KB

.xpi
Size: 1024B - Virtual size: 644B

.ixp
Size: 512B - Virtual size: 17B

.pixi
Size: 1024B - Virtual size: 836B

.rsrc
Size: 65KB - Virtual size: 65KB

.reloc
Size: 512B - Virtual size: 72B