84f4341262580f56646ce7ba1830b2aa_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

84f4341262580f56646ce7ba1830b2aa_JaffaCakes118
Size

124KB
MD5

84f4341262580f56646ce7ba1830b2aa
SHA1

7a4e881a424e956ed77b8071d9b8016a1e692782
SHA256

20dbe82b565f6ac29056eb699b327fc1af5e8a091e200f95ffc19e36547c26ac
SHA512

6f18fb8c3808d66b6a1b2edf629d71b54baaf88c6eba28138bb74e6842f6a5adbd4d3d9e7a6589ce97fece32e26909345c2a120b7daae6b4eacd4828e2ed97d6
SSDEEP

3072:O4BrJncQKEUhk4yxQnklAKu5IEpY6+jmkWMVKSs4iU+7m:O477Aex1AcmQHshm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
84f4341262580f56646ce7ba1830b2aa_JaffaCakes118

Files

84f4341262580f56646ce7ba1830b2aa_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b02bd51bed9db3af26793f4b398fbfa3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_WDM_DRIVER

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteAtom
ClearCommBreak
LoadLibraryW
_lclose
ExitThread
GetWindowsDirectoryA
GetProcAddress
HeapAlloc
GetModuleHandleA
GetLastError
VirtualProtect
GetStringTypeW
FreeLibrary
FindFirstFileW
lstrlenA
CheckRemoteDebuggerPresent
VirtualAlloc
GetCurrentProcess
VirtualFree
WriteConsoleW

msvcrt

_wcmdln
_iob
strncpy
__initenv
__p__fmode
_controlfp
swscanf
__p__commode
_vsnprintf
__dllonexit
_cexit
islower
wcschr
wcscat
_wtol
_purecall
_except_handler3
_ftol
__winitenv
_c_exit
_snwprintf
wcslen
malloc
memcpy
wcscpy
swprintf
free
__CxxFrameHandler
_exit
_adjust_fdiv
wcscmp

user32

CheckDlgButton
GetProcessWindowStation
DispatchMessageW
MapWindowPoints
LoadCursorA
RegisterClassA
SetScrollPos
GetCursorPos
GetParent
ReleaseCapture
CopyRect
ScreenToClient
wsprintfW
UnregisterClassW
DialogBoxParamA
IsWindow
LoadCursorW
BeginPaint
ReleaseDC
LoadImageW
SetCapture
LoadMenuW
DestroyWindow
SendMessageA
SendMessageW
GetMenuItemCount
ClientToScreen

shell32

SHGetPathFromIDListW
SHGetFileInfoW
ShellExecuteW
SHGetFolderPathW

opengl32

GlmfBeginGlsBlock
glColor3ui
glTexCoord2dv
wglShareLists
glTexCoord2d
glStencilMask
glColor4i
glColor4d
glColor4f
glFogfv

Exports

Exports

KmmbTobyhhTytqsGf
BxsUoytkpPsl
TanudMqnek

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 124B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.crt
Size: 512B - Virtual size: 17B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 70KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 90B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b02bd51bed9db3af26793f4b398fbfa3

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

shell32

opengl32

Exports

Exports

Sections

.text Size: 16KB - Virtual size: 15KB

.rdata Size: 2KB - Virtual size: 2KB

.edata Size: 512B - Virtual size: 124B

.crt Size: 512B - Virtual size: 17B

.data Size: 70KB - Virtual size: 70KB

.rsrc Size: 32KB - Virtual size: 32KB

.reloc Size: 512B - Virtual size: 90B

.text
Size: 16KB - Virtual size: 15KB

.rdata
Size: 2KB - Virtual size: 2KB

.edata
Size: 512B - Virtual size: 124B

.crt
Size: 512B - Virtual size: 17B

.data
Size: 70KB - Virtual size: 70KB

.rsrc
Size: 32KB - Virtual size: 32KB

.reloc
Size: 512B - Virtual size: 90B