946d398e364e0187b1a249b62d2d4022_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

946d398e364e0187b1a249b62d2d4022_JaffaCakes118
Size

218KB
MD5

946d398e364e0187b1a249b62d2d4022
SHA1

c83ae9278c094872a3cee741a496f6144c59819b
SHA256

fa0d3ff1aada852fe0861a98a965cd9af3748bc803c9ace577b23d6f7468d734
SHA512

6f2c10db7135df7f9f1e4095f05676a7dd3097528503587e00d612e4069f6a7cb8a4c2d9edea9b2a08daf3b29745afcf658856362251f9d2c133c2d49d11cae2
SSDEEP

3072:5CtI+7rPcv5Cvk3ksYIJmEOvhCqld/bb9o3TszuR3h4wkmXG/deJ2ovlBQl2jiHV:MI+na9nl6VlFhoDsKR3jRBlBQ2iHeL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
946d398e364e0187b1a249b62d2d4022_JaffaCakes118

Files

946d398e364e0187b1a249b62d2d4022_JaffaCakes118
.exe windows:5 windows x86 arch:x86

96213fad15bdd104f8e7e68b2f3ed4d0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

ChooseColorW
ChooseFontW
PrintDlgW

comctl32

InitCommonControlsEx
ImageList_GetImageCount
ImageList_Read
ImageList_Create

gdi32

CreateEllipticRgnIndirect
SetViewportExtEx
Rectangle
TextOutW
CreateDIBSection
IntersectClipRect
GetObjectA
GetLayout
GetCurrentObject
SetBkColor
GetFontData
SetTextAlign
GetObjectW
DeleteDC
FillRgn
SetDIBitsToDevice

user32

ToUnicodeEx
GetParent
GetPropW
DialogBoxIndirectParamA
OffsetRect
DrawTextW
LoadCursorW
GetScrollInfo
CreateMenu
GetMessagePos
ArrangeIconicWindows
GetKeyState
SetWindowLongA
InflateRect
MoveWindow
DrawStateA
keybd_event
GetKeyboardType
IsCharLowerA
GetMenuItemCount
IsChild
CharToOemBuffA
DeferWindowPos
LockWindowUpdate
RedrawWindow
CreatePopupMenu
CharUpperBuffA
IsWindowVisible
IsCharAlphaA
CheckRadioButton
GetClipCursor
CreateIconIndirect
LoadStringA
DestroyAcceleratorTable
SetMenuItemBitmaps
CreateWindowExA

kernel32

GlobalLock
GetStdHandle
GlobalDeleteAtom
HeapReAlloc
GetPriorityClass
CreateMutexA
GetProcAddress
lstrlenA
GetLastError
GetSystemDefaultLangID
FindNextFileW
DisconnectNamedPipe
HeapValidate
FormatMessageA
MoveFileW
HeapFree
SizeofResource
GetSystemTimeAsFileTime
SleepEx

Exports

Exports

?IUDFijfjkKLJFOIUofiuOFUiofOFYU@@YGKEPA_WG@Z

Sections

.text
Size: 124KB - Virtual size: 123KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vsctn
Size: 74KB - Virtual size: 200KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

96213fad15bdd104f8e7e68b2f3ed4d0

Headers

File Characteristics

Imports

comdlg32

comctl32

gdi32

user32

kernel32

Exports

Exports

Sections

.text Size: 124KB - Virtual size: 123KB

.data Size: 16KB - Virtual size: 16KB

.vsctn Size: 74KB - Virtual size: 200KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 124KB - Virtual size: 123KB

.data
Size: 16KB - Virtual size: 16KB

.vsctn
Size: 74KB - Virtual size: 200KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 1KB - Virtual size: 1KB