841d396590a6876bcaa80a2e41251bfa_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

841d396590a6876bcaa80a2e41251bfa_JaffaCakes118
Size

342KB
MD5

841d396590a6876bcaa80a2e41251bfa
SHA1

78e27b96e6c1d222b9d1592a312b8c8e75332699
SHA256

ce443b6fd1b01abbff6668497fc59e232f8c7b955f195981af48e5160687729f
SHA512

79237e3f328a5154bdb854ddb91bf46b0c8e003671ce9e7ca444762f0cbb66047b4a5e12be5cde1a8951bcf393b2e54288a32a56d148ebe306255e00131b139a
SSDEEP

6144:6gwRDzLv42/9nAj4wbtnimmuY403b8Dru68toEEJcNKkEgM3YWI:uRDPQ2lnAj51ima3b84oEEiNLBMoW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
841d396590a6876bcaa80a2e41251bfa_JaffaCakes118

Files

841d396590a6876bcaa80a2e41251bfa_JaffaCakes118
.exe windows:10 windows x86 arch:x86

2877074844f2180bf4cb08c46c23d5d0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MultiByteToWideChar
GetProcessHeap
LocalAlloc
FormatMessageW
SetEvent
GetProcessHeap
LocalAlloc
GetTickCount
GetCurrentProcess
GetTickCount
GetProcessHeap
GetModuleHandleA
SetUnhandledExceptionFilter
GetACP
GetCurrentThreadId
MultiByteToWideChar
SleepEx
GetModuleHandleA
WaitForSingleObject
MultiByteToWideChar
GetModuleHandleA
SetUnhandledExceptionFilter
SetEvent
GetCommandLineA
SetEvent
QueryPerformanceCounter
SetEvent
GetModuleFileNameA
GetProcessHeap
GetTickCount
GetModuleHandleW
SetEvent
SetEvent
WaitForSingleObject
GetCurrentProcess
GetModuleHandleA
GetTickCount
SetEvent
GetCurrentThreadId
QueryPerformanceCounter
QueryPerformanceCounter
QueryPerformanceCounter
SetUnhandledExceptionFilter
GetModuleFileNameA
GetModuleHandleA
MultiByteToWideChar
GetCurrentThreadId
VirtualFree
WaitForSingleObject
WaitForSingleObject
GetModuleHandleW
FormatMessageW
GetModuleHandleA
GetModuleFileNameA
GetCurrentThreadId
GetACP
GetModuleFileNameA
MultiByteToWideChar
MultiByteToWideChar
FormatMessageW
SetUnhandledExceptionFilter
GetModuleHandleA
GetCurrentThreadId
WaitForSingleObject
GetACP
VirtualFree
VirtualFree
GetTickCount
VirtualFree
SetUnhandledExceptionFilter
GetTickCount
GetModuleHandleA
GetACP
FormatMessageW
WaitForSingleObject
MultiByteToWideChar
LocalAlloc
WaitForSingleObject
LocalFree
GetACP

user32

GetDlgItem
DefWindowProcW
GetDlgItem
DestroyWindow
ReleaseDC
SetTimer
DestroyWindow
SendMessageW
GetWindowRect
CreateWindowExW
GetDlgItem
PostMessageW
SetTimer
EndPaint
DefWindowProcW
LoadIconW
LoadIconW
GetDC
GetSystemMetrics
ReleaseDC
GetSystemMetrics
DefWindowProcW
DestroyWindow
PostMessageW
ShowWindow
ShowWindow
CreateWindowExW
ShowWindow
CreateWindowExW
LoadIconW
GetSystemMetrics
GetDC
GetSystemMetrics
SendMessageW
GetDC
ReleaseDC
SetTimer
ShowWindow
ReleaseDC
SendMessageW
SetTimer
SendMessageW
ShowWindow
LoadIconW
LoadIconW
SendMessageW
GetDlgItem
GetDlgItem
PostMessageW
SendMessageW
ReleaseDC
GetMessageW
GetWindowRect
DefWindowProcW
GetDC
SetTimer
GetDlgItem
CreateWindowExW
SendMessageW
GetDlgItem
GetWindowRect
LoadIconW
GetDC
LoadIconW
PostMessageW
GetSystemMetrics
SetTimer
DefWindowProcW
GetMessageW
ShowWindow
GetWindowRect
GetWindowRect
GetSystemMetrics
SendMessageW
SendMessageW
SendMessageW
ShowWindow
GetMessageW
LoadIconW
SetTimer
DestroyWindow
PostMessageW
CreateWindowExW
ReleaseDC
CreateWindowExW
CreateWindowExW
DestroyWindow
GetDC
ShowWindow
ReleaseDC
DestroyWindow
GetMessageW
CreateWindowExW

ntdll

RtlAllocateHeap

gdi32

SetBkColor
GetTextMetricsW
SetTextColor
CreateCompatibleDC
GetObjectW
SetTextColor
GetDeviceCaps
MoveToEx
CreateCompatibleBitmap
LineTo
LineTo
MoveToEx
SetBkMode
GetTextMetricsW
GetStockObject
MoveToEx
MoveToEx
SetBkMode
LineTo
SetBkColor
MoveToEx
CreateCompatibleBitmap
DeleteDC
CreateCompatibleDC
BitBlt
GetObjectW
GetStockObject
DeleteObject
SetBkMode
SelectObject
SetBkColor
SetTextColor
GetStockObject
BitBlt
CreateCompatibleDC
GetDeviceCaps
CreateCompatibleDC
MoveToEx
MoveToEx
SetBkColor
BitBlt
LineTo
DeleteObject
CreateCompatibleBitmap
DeleteObject
SelectObject
GetStockObject
GetDeviceCaps
PatBlt
CreateCompatibleDC
MoveToEx
GetTextMetricsW
LineTo
GetTextMetricsW
CreateCompatibleDC
GetDeviceCaps
LineTo
GetDeviceCaps
BitBlt
CreateCompatibleBitmap
CreateCompatibleDC
DeleteDC
DeleteObject
BitBlt
GetStockObject
CreateCompatibleDC
CreateCompatibleDC
SetBkColor
SetTextColor
LineTo
SetBkMode
DeleteDC
MoveToEx
SetBkMode
SetTextColor
SetBkMode
DeleteDC
GetDeviceCaps
DeleteDC
GetTextMetricsW
DeleteObject
LineTo
DeleteObject
DeleteDC

Sections

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 912KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 313KB - Virtual size: 316KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2877074844f2180bf4cb08c46c23d5d0

Headers

File Characteristics

Imports

kernel32

user32

ntdll

gdi32

Sections

.text Size: 20KB - Virtual size: 20KB

.rdata Size: 6KB - Virtual size: 912KB

.data Size: 313KB - Virtual size: 316KB

.pdata Size: 512B - Virtual size: 4KB

.pdata Size: 512B - Virtual size: 4KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 20KB - Virtual size: 20KB

.rdata
Size: 6KB - Virtual size: 912KB

.data
Size: 313KB - Virtual size: 316KB

.pdata
Size: 512B - Virtual size: 4KB

.pdata
Size: 512B - Virtual size: 4KB

.rsrc
Size: 1024B - Virtual size: 4KB