b131250387314a98bedd3fa35bf428e9_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b131250387314a98bedd3fa35bf428e9_JaffaCakes118
Size

372KB
MD5

b131250387314a98bedd3fa35bf428e9
SHA1

8e584320f627db6d557037e951a6c57e3c90b9c1
SHA256

2e0279ddbeb7a308ac14dfab6cae42726f149aea553cc8f8504ac94ae3998c1b
SHA512

5803b5cb04f59a306b1256f4b45cea129dd4fdd17df52f5d931446b4fc6f75b020d1a21f275f939e82195168b4ba7f9a23e75df1625f3d9823ae9ac381c9c208
SSDEEP

6144:jO2vCQ3OTBg9Yam3u23yi4kt6seZcbKUlur/UHTWF9XK1U4hFhkJLDtsgYxcdwXn:jJvn+qnme2iE2BMur/yMtSUkYLDtR+oW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b131250387314a98bedd3fa35bf428e9_JaffaCakes118

Files

b131250387314a98bedd3fa35bf428e9_JaffaCakes118
.exe windows:7 windows x86 arch:x86

f56633517f5aee302cc14c84c984ddce

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

DestroyWindow
GetMessageA
DefWindowProcA
CreateWindowExA
ShowWindow
UpdateWindow
SendMessageA
TranslateMessage
RegisterClassExA
DispatchMessageA

kernel32

FreeLibrary
GetModuleHandleW
HeapSize
RaiseException
GetTimeFormatW
LocalFree
GetTickCount
QueryPerformanceCounter
IsDBCSLeadByte
GetFileTime
CreateDirectoryW
lstrcatW
CloseHandle
GetLocaleInfoW
TerminateProcess
LocalAlloc
GetSystemTimeAsFileTime
GetACP
GetLastError
MultiByteToWideChar
CreateFileW
GlobalAlloc
GetNumberFormatW
lstrcpynW
InterlockedDecrement
MulDiv
GetThreadLocale
GetCurrentProcess
UnhandledExceptionFilter
GetFileSize
lstrcmpW
lstrcmpiW
SetErrorMode
FindClose
GetTempPathW
HeapAlloc
GlobalReAlloc
LoadLibraryA
GetProcessHeaps
FileTimeToLocalFileTime
FileTimeToSystemTime
GlobalLock
GetStartupInfoW
FindFirstFileW
lstrcpyW
LoadLibraryW
GlobalFree
GetDateFormatW
GetCurrentProcessId
GetModuleHandleA
SetEndOfFile
GetTempFileNameW
lstrlenW
GetExitCodeThread
GetProcessHeap
GetCurrentThreadId
InterlockedIncrement
InterlockedExchange
GetProcAddress
SetUnhandledExceptionFilter
GlobalUnlock
VirtualAlloc
lstrlenA
VirtualFree
GetFileAttributesW

msvcrt

wcscmp
_ltow
_wtol
__dllonexit
__setusermatherr
_itow
_wcmdln
exit
wcscat
_CxxThrowException
_adjust_fdiv
_cexit
_XcptFilter
__p__fmode
__p__commode
__wgetmainargs
_wcsdup
__set_app_type
wcstok
__CxxFrameHandler
_wtoi
__wargv
_purecall
_wcsicmp
wcschr
_onexit
_controlfp
_exit
_getdcwd
_c_exit
_initterm
rand
free
__argc
_beginthreadex
_except_handler3
_wsplitpath

gdi32

SetStretchBltMode
GetNearestColor
SetPixel
DeleteDC
CreateBitmap
Ellipse
GetBkMode
PolyBezier
GetNearestPaletteIndex
CreateDCW
SelectObject
TranslateCharsetInfo
SetBkMode
SetROP2
SetMapMode
CreateCompatibleBitmap
RoundRect
GetObjectW
CreateICW
RealizePalette
FillRgn
TextOutW
CreatePalette
GetStockObject
GetDIBits
MoveToEx
CreateHalftonePalette
SetViewportExtEx
SetDIBits
GetPixel
GetDeviceCaps
EnumFontFamiliesW
StretchBlt
SetPaletteEntries
PlayMetaFile
Rectangle
GetCurrentObject
SetDIBColorTable
LPtoDP
GetDIBColorTable
GetPaletteEntries
SaveDC
GetTextColor
CreateDIBitmap
CreateRectRgnIndirect
GetTextExtentPoint32W
CreatePen
SetBrushOrgEx
SetTextAlign
LineTo
GetTextMetricsW
EnumFontFamiliesExW
CreateCompatibleDC
Polygon
BitBlt
ExtFloodFill
RestoreDC
UnrealizeObject
ExtTextOutW
CreatePolygonRgn
CreateSolidBrush
RectVisible
CreateFontIndirectW
CreateDIBSection
CreatePatternBrush
SelectPalette
SetBkColor
PtVisible
Polyline
OffsetRgn
PatBlt
ResizePalette
SetDIBitsToDevice
StretchDIBits
SetTextColor
DeleteObject
Escape

Sections

.text
Size: 192KB - Virtual size: 192KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 168KB - Virtual size: 824KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f56633517f5aee302cc14c84c984ddce

Headers

DLL Characteristics

File Characteristics

Imports

user32

kernel32

msvcrt

gdi32

Sections

.text Size: 192KB - Virtual size: 192KB

.data Size: 10KB - Virtual size: 9KB

.rsrc Size: 168KB - Virtual size: 824KB

.text
Size: 192KB - Virtual size: 192KB

.data
Size: 10KB - Virtual size: 9KB

.rsrc
Size: 168KB - Virtual size: 824KB