8691def67a418dbd955b7b751d4c2a4f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

8691def67a418dbd955b7b751d4c2a4f_JaffaCakes118
Size

144KB
MD5

8691def67a418dbd955b7b751d4c2a4f
SHA1

a3aa04c5fb29cb90a188a7ad1f52c6bd7df7bd11
SHA256

10c5ac64cb8e3b915b6ecfa01d5102651aa9e9c5c14ec76f353b2a759f8fe4e1
SHA512

6cf09dc04346df00b8a44513b5e5e39fe9e5c29169e0cc5e3a4bae0aa059293b33297c5ed28309af961cac5d90b6a7de1e08f93f4dd95f482d080e9aaae000ce
SSDEEP

3072:iccSOIB9rYvF3CkSYMZ9ot/YOm7aUqPoN2ZlkYOmO:KIr63CkxqC3UW8pPp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8691def67a418dbd955b7b751d4c2a4f_JaffaCakes118

Files

8691def67a418dbd955b7b751d4c2a4f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

76a74bc8a13279d0101df3bbd057478e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
GetTimeZoneInformation
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetTickCount
ExitProcess
FreeLibrary
SetEnvironmentVariableA
CompareStringW
LoadLibraryA
CloseHandle
GetStringTypeW
GetStringTypeA
MultiByteToWideChar
GetOEMCP
GetACP
GetCPInfo
SetFilePointer
GetLastError
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
IsBadWritePtr
HeapReAlloc
VirtualAlloc
WriteFile
VirtualFree
HeapCreate
HeapDestroy
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
SetStdHandle
GetModuleFileNameA
GetCurrentProcess
TerminateProcess
HeapFree
HeapAlloc
GetVersion
CompareStringA
FlushFileBuffers
UnhandledExceptionFilter
GetVersionExA
GetProcAddress
GetModuleHandleA
LCMapStringW
GetCommandLineA
LCMapStringA
GetStartupInfoA
GetLocalTime
SetThreadPriority
GetSystemTime
RtlUnwind

user32

GetSysColor
GetDlgItem
SendDlgItemMessageA
DialogBoxParamA
SetTimer
KillTimer
GetForegroundWindow
SystemParametersInfoA
DefWindowProcA
ChangeDisplaySettingsA
DestroyWindow
PostMessageA
GetCursorPos
SetCursor
IsWindow
GetParent
PostQuitMessage
EnumDisplaySettingsA
DispatchMessageA
TranslateMessage
GetMessageA
CreateWindowExA
RegisterClassA
SetForegroundWindow
FindWindowA
GetSystemMetrics
LoadIconA
SendMessageA
PeekMessageA
CharNextA
GetSysColorBrush
EndDialog
ReleaseDC
GetDC
GetClientRect

gdi32

GetStockObject
ChoosePixelFormat
SetBkColor
SetPixelFormat
DescribePixelFormat
SetTextColor

advapi32

RegQueryValueExA
RegCloseKey
RegOpenKeyA
RegSetValueExA
RegCreateKeyExA
RegOpenKeyExA

shell32

ShellExecuteA

comctl32

ord17

opengl32

wglDeleteContext
wglCreateContext
wglMakeCurrent
glViewport
glMatrixMode
glClearColor
glEnable
glBindTexture
glTexEnvf
glTexParameteri
glTexImage2D
glNewList
glTexCoord2f
glEndList
glHint
glLoadIdentity
glClear
glBlendFunc
glColor4f
glVertex3f
glFlush
wglSwapLayerBuffers
glColor3fv
glVertex3fv
glLineWidth
glBegin
glColor3f
glEnd
glPointSize
glPushMatrix
glTranslatef
glPopMatrix
glCallList

glu32

gluPerspective

Sections

.text
Size: 44KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rrdata
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

76a74bc8a13279d0101df3bbd057478e

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

comctl32

opengl32

glu32

Sections

.text Size: 44KB - Virtual size: 41KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 4KB - Virtual size: 13KB

.rsrc Size: 8KB - Virtual size: 5KB

.rrdata Size: 76KB - Virtual size: 76KB

.text
Size: 44KB - Virtual size: 41KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 4KB - Virtual size: 13KB

.rsrc
Size: 8KB - Virtual size: 5KB

.rrdata
Size: 76KB - Virtual size: 76KB