9fcd00fd2b4b7617d140f5bf694cdf0d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

9fcd00fd2b4b7617d140f5bf694cdf0d_JaffaCakes118
Size

138KB
MD5

9fcd00fd2b4b7617d140f5bf694cdf0d
SHA1

cf2a7a7659a85a191008c6ae15ec64a6feb7cbce
SHA256

61c99222677a3e857c078597613153f263bbd557e694bd1eace54ed014bf13a3
SHA512

7f08f5a5201f7db79c50b3ed163753bed32b827889a26995272b716c3fc0fdfd531c3ab5a222e63296d6a9b6f56b6e4b67bc4ae78d3b99a933f1e4b441b9d47c
SSDEEP

1536:QJ/BTuQzCOnLhgKN09DC8BvN7PDjrkKkKuM/BNLyD4QsRUIRNwOWU8ma9kYHetj+:QxBj/n29DCENPvMKrN2DoMU8mfY+8i

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9fcd00fd2b4b7617d140f5bf694cdf0d_JaffaCakes118

Files

9fcd00fd2b4b7617d140f5bf694cdf0d_JaffaCakes118
.exe windows:5 windows x86 arch:x86

8c00ffb606f24f871625b6ab18d45af1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

e100cp50

_LEps
_FDnorm
_Getcvt
_Poly
_FDscale
_LDscale
_Snan
_FExp
_LExp
_Getctype
_Dnorm
_FNan

kernel32

GetStdHandle
CreateFileMappingA
lstrlenA
WaitForMultipleObjects
HeapFree
lstrlenW
CreateEventA
SetThreadPriority
CreateDirectoryA
FreeLibrary
SetEvent
UnmapViewOfFile
OpenEventA
SetErrorMode
LoadLibraryExA
GetModuleHandleA
UnhandledExceptionFilter
MapViewOfFile
CloseHandle
CreateFileW
FindClose
FileTimeToDosDateTime
TerminateProcess
UnmapViewOfFile
RemoveDirectoryA
VirtualQuery
GetExitCodeProcess
GetComputerNameA

user32

AdjustWindowRectEx
RegisterWindowMessageA
IsZoomed
LoadCursorA
GetMessageA
DrawEdge
GetUpdateRect
GetClassInfoW
GetClipboardFormatNameA
IsChild
DestroyCaret
DeleteMenu
SetCaretPos
GetLastActivePopup
GetPropA
FindWindowA
EnumWindows
MessageBoxA
EndDeferWindowPos
GetWindowPlacement
EnableScrollBar
GetWindow
MapWindowPoints
GetForegroundWindow
SendMessageW
GetDCEx
PtInRect
CharLowerA
EmptyClipboard
RegisterClassW
CopyImage
GetMenuStringW
DefWindowProcW
IsCharAlphaA
GetKeyNameTextW
GetDlgItem
ScrollWindow
GetSubMenu

gdi32

CreateSolidBrush
GetEnhMetaFileDescriptionA
OffsetClipRgn
SetAbortProc
Rectangle
CombineRgn
GetTextAlign
SetROP2
GetEnhMetaFileHeader
GetBitmapBits
SelectClipRgn
SetBrushOrgEx
SelectPalette
GetTextExtentPoint32W
FillRgn
GetCurrentPositionEx
GetTextExtentPointA
CreateFontIndirectA
SetTextAlign

ole32

CoDisconnectObject
OleDraw

wininet

InternetCrackUrlA

comctl32

ImageList_SetBkColor
ImageList_Add
InitCommonControls

oleaut32

SafeArrayGetElement
CreateErrorInfo
SafeArrayGetUBound

shell32

SHGetDesktopFolder
SHGetMalloc
DragAcceptFiles

comdlg32

GetSaveFileNameA

Sections

.text
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 30KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8c00ffb606f24f871625b6ab18d45af1

Headers

DLL Characteristics

File Characteristics

Imports

e100cp50

kernel32

user32

gdi32

ole32

wininet

comctl32

oleaut32

shell32

comdlg32

Sections

.text Size: 100KB - Virtual size: 100KB

.rdata Size: 3KB - Virtual size: 4KB

.data Size: 30KB - Virtual size: 32KB

.rsrc Size: 4KB - Virtual size: 4KB

.text
Size: 100KB - Virtual size: 100KB

.rdata
Size: 3KB - Virtual size: 4KB

.data
Size: 30KB - Virtual size: 32KB

.rsrc
Size: 4KB - Virtual size: 4KB