8db47d0c21108ce71b4f786999b621e6_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

8db47d0c21108ce71b4f786999b621e6_JaffaCakes118
Size

83KB
MD5

8db47d0c21108ce71b4f786999b621e6
SHA1

3b499348907959936446303fac09aca79820389b
SHA256

b1a10e62843f1dc6fe0ef5485234c896686d73ea8e13866da3e9c9205787a310
SHA512

4c0d01ab4865be7a3b29cc3f1617e6c0a062e2d5f33e8838f1f27dcaacf1af694a46649bd6a96195374e185d539cac65ef5c2374236a1e4e056b71924b1ae72f
SSDEEP

1536:3GXNwDeAUh+uv54/eHoZCrNYdpVb6qr/MQOPjfsUBiZSdF8/06gW:3eAy+JeHMogpVFYJfsHZSOgW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8db47d0c21108ce71b4f786999b621e6_JaffaCakes118

Files

8db47d0c21108ce71b4f786999b621e6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

49ae091150df76b11eba48f894abe9e4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
GetTickCount
GetModuleFileNameW
lstrcmpiW
GetProcessHeap
HeapDestroy
ReadFile
GetProcessHeap
DisableThreadLibraryCalls
DeleteCriticalSection
GetProcAddress
VirtualProtect
LocalFree
VirtualProtect
ReadFile
InterlockedExchange
QueryPerformanceCounter
GetCurrentProcess
ReadFile
GetSystemTimeAsFileTime
HeapDestroy
GetProcessHeap
lstrcmpiW
FreeLibrary
GetModuleHandleW
HeapAlloc
FreeLibrary
MultiByteToWideChar
UnhandledExceptionFilter
GetModuleFileNameW
Sleep
GetCurrentThreadId
CreateEventW
DisableThreadLibraryCalls
CreateEventW
GetSystemTimeAsFileTime
GetCurrentProcess
Sleep
MultiByteToWideChar
EnterCriticalSection
lstrcmpiW
LoadLibraryA
GetTickCount
GetTickCount
InterlockedExchange
InitializeCriticalSection
UnhandledExceptionFilter
CreateEventW
LeaveCriticalSection
HeapDestroy
GetModuleFileNameW
LoadLibraryW
InterlockedIncrement
ReadFile
GetCurrentThreadId
FreeLibrary
ReadFile
SetLastError
CreateEventW
VirtualAlloc
HeapDestroy
ReadFile
QueryPerformanceCounter
LocalAlloc
GetCurrentProcessId
lstrcmpiW
CreateEventW
VirtualAlloc
GetLastError
VirtualProtect
lstrcmpiW
GetCurrentThreadId
GetModuleFileNameW
GetModuleHandleA
LoadLibraryA
EnterCriticalSection
DeleteCriticalSection
VirtualProtect
SetLastError
LocalFree
CreateEventW
CreateThread
VirtualAlloc
GetVersionExA
GetCurrentProcessId
EnterCriticalSection
GetTickCount
DisableThreadLibraryCalls
LocalAlloc
GetCurrentProcessId
GetVersionExA
CreateThread
InterlockedIncrement
ReadFile
InterlockedExchange
InterlockedExchange
InterlockedDecrement

gdi32

CreateBitmap
Polygon
SetWindowExtEx
CreateBitmap
GetWindowExtEx
CreateSolidBrush
GetCurrentObject
CreateCompatibleDC
StretchBlt
GetBkMode
CreateDIBitmap
StretchBlt
SetBkMode
GetWindowExtEx
CreateBitmap
RoundRect
GetWindowExtEx
SetPixel
GetWindowExtEx
GetCurrentObject
Polygon
SetTextColor
SetWindowOrgEx
SetPixel
SetBkColor
CreateBitmapIndirect
CreateSolidBrush
SetBkColor
GetBkMode
CreateBitmap
SetTextColor
MoveToEx
Rectangle
BitBlt
Rectangle
GetBkColor
Polygon
GetWindowOrgEx
BitBlt
BitBlt
Ellipse
GetBkMode
CreateSolidBrush
MoveToEx
SetWindowOrgEx
CreateFontA
CreateDIBSection
GetCurrentObject
CreatePen
Ellipse
GetBrushOrgEx
GetWindowOrgEx
PatBlt
GetWindowOrgEx
LineTo
Polygon
Ellipse
BitBlt
MoveToEx
BitBlt
GetBrushOrgEx
SelectObject
CreateBitmapIndirect
CreateSolidBrush
SetBkColor
CreateDIBitmap
LineTo
SetBkMode
CreateDIBSection
SetBkColor
CreateFontIndirectA
CreateDIBitmap
MoveToEx
GetBrushOrgEx
LineTo
CreateFontA
CreateRectRgn
Ellipse
CreateFontIndirectA
SetWindowOrgEx
CreateFontA
CreateCompatibleDC
GetBrushOrgEx
SetBrushOrgEx
CreateFontA
SetTextColor
SetWindowOrgEx
SetWindowExtEx
CreateFontIndirectA
SetWindowOrgEx
Polygon

user32

CharNextW
SetWindowPos
PostMessageW
BeginPaint
wsprintfA
TranslateMessage
SetWindowLongW
IsDlgButtonChecked
ReleaseDC
ShowWindow
GetClientRect
SetForegroundWindow
ShowWindow
DialogBoxParamW
SetWindowPos
EnableWindow
TranslateMessage
IsWindow
InvalidateRect
ReleaseDC
LoadStringW
DefWindowProcW
LoadIconW
DialogBoxParamW
SetWindowLongW
LoadCursorW
SetTimer
GetClientRect
EndPaint
GetWindowLongW
LoadStringW
SetForegroundWindow
SendMessageW
CreateWindowExW
GetWindowRect
SetTimer
LoadCursorW
GetWindowLongW
CharNextW
SetFocus
SetForegroundWindow
SetForegroundWindow
EndDialog
MessageBoxW
DispatchMessageW
SetCursor
IsWindow
EndPaint
ReleaseDC
GetDC
CharNextW
EnableWindow
SetCursor
GetSysColor
IsDlgButtonChecked
ReleaseDC
BeginPaint
GetSysColor
SetFocus
CreateWindowExW
SetDlgItemTextW
GetClientRect
SetForegroundWindow
TranslateMessage
LoadCursorW
SetTimer
SetCursor
BeginPaint
SendDlgItemMessageW
MessageBoxW
LoadStringW
DefWindowProcW
SetWindowTextW
KillTimer
SetForegroundWindow
KillTimer
GetDesktopWindow
SetCursor
SendMessageW
SetWindowLongW
SetCursor
PeekMessageW
BeginPaint
DestroyWindow
CharNextW
DefWindowProcW
TranslateMessage
GetFocus
GetClientRect
BeginPaint
CreateWindowExW
GetSysColor
GetDC
LoadCursorW
InvalidateRect
SetWindowTextW
DialogBoxParamW

Sections

.text
Size: 73KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

49ae091150df76b11eba48f894abe9e4

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

gdi32

user32

Sections

.text Size: 73KB - Virtual size: 92KB

.data Size: 512B - Virtual size: 4KB

.rdata Size: 7KB - Virtual size: 8KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 73KB - Virtual size: 92KB

.data
Size: 512B - Virtual size: 4KB

.rdata
Size: 7KB - Virtual size: 8KB

.rsrc
Size: 1024B - Virtual size: 4KB