acb3e92a7f689b58b3cc489fb9ec2fca_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

acb3e92a7f689b58b3cc489fb9ec2fca_JaffaCakes118
Size

626KB
MD5

acb3e92a7f689b58b3cc489fb9ec2fca
SHA1

5f28e14e5b9c7bc09535de8d625965e4b9c1c9d7
SHA256

5b27f57ee792a99b66a9a66ab108ee08f50193f3f68ce2ca10ecfd3dc5d5cc43
SHA512

81e6a72567cc47fd745b3bf601daa26dbe9a004c6b2eb1647cc462b73257d636b61ba29a93c4821b049e08abc9acdf8549c467e111af401a2e8df18743a09513
SSDEEP

12288:/euCeiisV+BQwaPXqZ9teov+7K6+UMP6kWp5y7:/eXDisAGwGXeteov+7rXMykz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
acb3e92a7f689b58b3cc489fb9ec2fca_JaffaCakes118

Files

acb3e92a7f689b58b3cc489fb9ec2fca_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b0d4e2973661c12eed017de9a30790b7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHEmptyRecycleBinW
SHGetDiskFreeSpaceExA
ord180

gdi32

EqualRgn
SelectPalette
SetMapMode
SetColorAdjustment
SetMiterLimit
CreatePen
GetViewportExtEx
LineTo
SetDIBitsToDevice
CombineTransform
GetPaletteEntries
GetCharWidth32A
EnumFontsA
CreateRectRgnIndirect
PolyBezier
CreateRoundRectRgn
FrameRgn
PathToRegion
AddFontResourceA
RealizePalette
CreatePenIndirect
StretchBlt
DPtoLP
GetPath
GetCurrentPositionEx
GetGraphicsMode
UnrealizeObject
CreatePolygonRgn
SetPaletteEntries
GetCharABCWidthsA
GetMapMode

comctl32

ord5
ord6
ord2

kernel32

GetModuleFileNameA
GetProcAddress
FlushFileBuffers
Sleep
GetModuleHandleA
LoadLibraryA
GetStartupInfoA

user32

SendMessageA
AnyPopup
GetCaretPos
BringWindowToTop
IsRectEmpty
MessageBoxA
SubtractRect
IsZoomed
UnionRect
ChildWindowFromPoint
CreateDialogIndirectParamA
EndDeferWindowPos
IntersectRect
MessageBoxIndirectA
DefDlgProcA
EqualRect
MapDialogRect
MessageBoxExW
ClientToScreen
IsIconic

msvcrt

_exit
_XcptFilter
_cexit
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_controlfp
_except_handler3
_c_exit

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 116B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.udata
Size: - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 96KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 348B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b0d4e2973661c12eed017de9a30790b7

Headers

File Characteristics

Imports

shell32

gdi32

comctl32

kernel32

user32

msvcrt

Sections

.text Size: 7KB - Virtual size: 7KB

.data Size: 512B - Virtual size: 116B

.udata Size: - Virtual size: 48KB

.rdata Size: 96KB - Virtual size: 96KB

.reloc Size: 512B - Virtual size: 348B

.text
Size: 7KB - Virtual size: 7KB

.data
Size: 512B - Virtual size: 116B

.udata
Size: - Virtual size: 48KB

.rdata
Size: 96KB - Virtual size: 96KB

.reloc
Size: 512B - Virtual size: 348B