a6b822e8f9f536b4259c5e2e3b6daffe_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a6b822e8f9f536b4259c5e2e3b6daffe_JaffaCakes118
Size

143KB
MD5

a6b822e8f9f536b4259c5e2e3b6daffe
SHA1

1568773ca8557ad90bc05d3f42d0bce57d5e91e6
SHA256

581d1ecae3eb98e923f68b1a93d32535eda5752d19d2e6edccdedc054b6ef4fa
SHA512

8ba4173ba26c702648c682baf0d7491f137ff3427d210dc863a9c98355f6ce3e1df3712ea50146849905dff7a7415864e81add73059d11561322d980a4175baf
SSDEEP

3072:3p+IvRO96Rv9Cx93IngH9p18jsTG4+MfSi25YIJD8jRpAZw:3kIvU96RVu3IntgPW1JDy7A

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a6b822e8f9f536b4259c5e2e3b6daffe_JaffaCakes118

Files

a6b822e8f9f536b4259c5e2e3b6daffe_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4dd52a7dcfa54e7ee762ce91d19d83bc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetFocus
CharLowerW
PeekMessageA
RegisterClipboardFormatW
CheckDlgButton
DialogBoxParamW
CreateWindowExW
GetDC
InflateRect
ReleaseDC
EnableWindow
WinHelpW
GetAsyncKeyState
RegisterWindowMessageW
IsChild
LoadBitmapW
MoveWindow
GetSystemMetrics
UpdateWindow
EnumChildWindows
IsRectEmpty
SetWindowLongW
GetWindowThreadProcessId
SendDlgItemMessageW
ScreenToClient
SystemParametersInfoW
LoadImageW
EqualRect
ClientToScreen
EndPaint

kernel32

GetThreadLocale
ResetEvent
GetSystemTimeAsFileTime
GetFileAttributesA
ResumeThread
LocalFree
FindClose
LCMapStringA
CreateFileMappingA
FindResourceA
InitializeCriticalSection
GetFileSize
TlsAlloc
DisableThreadLibraryCalls
Sleep
GetVersion
QueryPerformanceCounter
SetLastError
OpenMutexW
GetExitCodeThread
GetDriveTypeW
GetModuleHandleW
CreateEventW
GetFileAttributesW
ReadFile
GetCurrentThreadId
LCMapStringW
LeaveCriticalSection
FindFirstFileW
WriteConsoleW
GetACP
VirtualAlloc
CreateMutexW
GetCommandLineA
GetCurrentDirectoryW
GetDriveTypeA
InterlockedDecrement
GetTickCount
HeapCreate
FormatMessageA
CreateThread
OpenEventW
GetExitCodeProcess
GetStdHandle
GetEnvironmentStrings
GetLastError
IsBadReadPtr
GetSystemDirectoryA
GetModuleHandleA
GetModuleFileNameW
LoadLibraryExA
GlobalAlloc
WaitForSingleObject

msvcrt

strchr
_strdup
atoi
strncmp
wcstoul
_wcslwr
_rotr
rand
?terminate@@YAXXZ
_CIacos
_tell
_wcsdup
_wcsnicmp
_ultoa
_ftol
malloc
_cexit
floor
ctime
calloc
iswalpha
__p__fmode
_commit
_CxxThrowException
_wcsupr
_stat
mbstowcs
_itow
strtok
wcstol
isalnum
_isatty
isdigit
isxdigit
fread
exit
__p__osver
_beginthreadex
_snprintf
_finite
_except_handler3
__CxxFrameHandler
__p__commode
atol
_CIsqrt
srand
strtoul
_wcsicmp
__pioinfo
__p__iob
toupper
realloc

Sections

.text
Size: 132KB - Virtual size: 131KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.textbss
Size: 512B - Virtual size: 122KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 512B - Virtual size: 88B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: 512B - Virtual size: 158B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.textbss
Size: 512B - Virtual size: 149B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 512B - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: 512B - Virtual size: 422B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 18B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4dd52a7dcfa54e7ee762ce91d19d83bc

Headers

DLL Characteristics

File Characteristics

Imports

user32

kernel32

msvcrt

Sections

.text Size: 132KB - Virtual size: 131KB

.textbss Size: 512B - Virtual size: 122KB

DATA Size: 512B - Virtual size: 88B

BSS Size: 512B - Virtual size: 158B

.textbss Size: 512B - Virtual size: 149B

DATA Size: 512B - Virtual size: 37KB

BSS Size: 512B - Virtual size: 422B

.rsrc Size: 6KB - Virtual size: 6KB

.reloc Size: 512B - Virtual size: 18B

.text
Size: 132KB - Virtual size: 131KB

.textbss
Size: 512B - Virtual size: 122KB

DATA
Size: 512B - Virtual size: 88B

BSS
Size: 512B - Virtual size: 158B

.textbss
Size: 512B - Virtual size: 149B

DATA
Size: 512B - Virtual size: 37KB

BSS
Size: 512B - Virtual size: 422B

.rsrc
Size: 6KB - Virtual size: 6KB

.reloc
Size: 512B - Virtual size: 18B