963474f3168a97d1d8b2c615e0275361_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

963474f3168a97d1d8b2c615e0275361_JaffaCakes118
Size

27KB
MD5

963474f3168a97d1d8b2c615e0275361
SHA1

365e7e059d06281de7b157dcb4a0e8ef979e4cec
SHA256

f308787ef3c125acaf059f038b3f9552432e30ce14f0e665eba7e986b73c2801
SHA512

09ede8572f77e9f164701f7cf597fe2b70877bf6aa2c07abd7cc477185bbb16de5b8a783a7203d8f15ea0547e99a8639d17381d28a10fcfd37281ccfaedd4f91
SSDEEP

768:a6B3toe81EE6ZWGLbEhaR0tB+UYn5yaZm8e7WOk:vuF6ZWsgha0gUYn59g8J

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
963474f3168a97d1d8b2c615e0275361_JaffaCakes118

Files

963474f3168a97d1d8b2c615e0275361_JaffaCakes118
.exe windows:5 windows x86 arch:x86

d51bffe495e82fafff5f76d10325ae7b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileW
DeleteCriticalSection
FreeLibrary
GetVersionExA
CreateThread
InterlockedExchange
GetSystemTimeAsFileTime
CreateFileW
lstrcmpiW
InterlockedIncrement
HeapAlloc
QueryPerformanceCounter
GetSystemTimeAsFileTime
LoadLibraryW
lstrcmpiW
InitializeCriticalSection
LocalAlloc
DeleteCriticalSection
CreateEventW
InitializeCriticalSection
GetCurrentThreadId
Sleep
VirtualAlloc
QueryPerformanceCounter
MultiByteToWideChar
DeleteCriticalSection
lstrlenA
InterlockedIncrement
DisableThreadLibraryCalls
GetCurrentProcess
FreeLibrary
HeapAlloc
MultiByteToWideChar
LocalAlloc
HeapAlloc
lstrlenA
HeapDestroy
GetVersionExA
HeapDestroy
InitializeCriticalSection
UnhandledExceptionFilter
SetLastError
GetModuleFileNameA
CreateThread
InterlockedIncrement
EnterCriticalSection
CreateEventW
lstrlenA
GetModuleFileNameA
DeleteCriticalSection
GetModuleHandleA

user32

EnableWindow
GetSysColor
BeginPaint
LoadCursorW
LoadCursorW
GetSysColor
IsWindow
IsWindow
SetFocus
DispatchMessageW
SetWindowPos
SetFocus
PostMessageW
EndPaint
PeekMessageW
TranslateMessage
BeginPaint
SetWindowLongW
LoadCursorW
GetDlgItem
PostMessageW
SetFocus
BeginPaint
CharNextW
BeginPaint
CreateWindowExW
GetDC
SetWindowTextW
SetTimer
CreateWindowExW
SetCursor
InvalidateRect
PostMessageW
SetWindowTextW
GetDlgItem
DefWindowProcW
LoadStringW
SendDlgItemMessageW
DestroyWindow
SetForegroundWindow
SetWindowPos
GetFocus
GetSysColor
GetSysColor
InvalidateRect
PeekMessageW
SetTimer
SetCursor
GetDC
EndPaint
KillTimer
wsprintfA
PostMessageW
SetForegroundWindow
SetFocus
SendDlgItemMessageW
SetTimer
GetWindowRect

Sections

.text
Size: 22KB - Virtual size: 28KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d51bffe495e82fafff5f76d10325ae7b

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 22KB - Virtual size: 28KB

.data Size: 512B - Virtual size: 4KB

.rdata Size: 3KB - Virtual size: 4KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 22KB - Virtual size: 28KB

.data
Size: 512B - Virtual size: 4KB

.rdata
Size: 3KB - Virtual size: 4KB

.rsrc
Size: 1024B - Virtual size: 4KB