af985d4008865ceb92b99b79e9d2a1ec_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

af985d4008865ceb92b99b79e9d2a1ec_JaffaCakes118
Size

165KB
MD5

af985d4008865ceb92b99b79e9d2a1ec
SHA1

943913af93434f6eddbb3c57b1ddfccce3c70169
SHA256

c8f9b766c190d78e8f8676e16b45ced909605ae3ce27fd17f6bdd53cc92cb328
SHA512

b33d1b77ce9f91f0c0d17ae22f07c1ef53b2069f227813f8a8efe647b7e9181432c799cb6680f18424ffa44d6d58a70719f66e2a5866451f8b6928d74655126f
SSDEEP

3072:4iY/vHi2r8KhmF6CVjwSkLga+tpznaM8JoGD2Kv839yjzK7kuZRpVRNmddPSi:UHFIQCRkLEaZoGD2G839yzq9RBNKdqi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
af985d4008865ceb92b99b79e9d2a1ec_JaffaCakes118

Files

af985d4008865ceb92b99b79e9d2a1ec_JaffaCakes118
.exe windows:4 windows x86 arch:x86

38edc5bdb07a0aa6ad3a38d1bbe8d6d1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoInitialize
CoFreeUnusedLibraries
StringFromGUID2
CoUninitialize
CoCreateInstance

gdi32

StretchBlt
SetStretchBltMode
CreatePen
SelectObject
GetObjectType
LineTo
BitBlt
CreateDIBSection
CreateDCW
DeleteDC
CreateCompatibleDC
CreateBitmap

user32

LoadCursorW
RedrawWindow
GetFocus
ClipCursor
TrackPopupMenuEx
SetCursor
FindWindowA
EnableWindow
IsWindow
InvalidateRect
SetParent
GetDesktopWindow
CreatePopupMenu
DestroyMenu
SetWindowPos
PtInRect

kernel32

WaitCommEvent
LocalAlloc
CreateFileW
LocalFree
GetSystemTimeAsFileTime
ReadFile
WaitCommEvent
DisableThreadLibraryCalls
GetFullPathNameW
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
EnumResourceNamesW
LoadLibraryW
ExitProcess
GetModuleFileNameA
ExitProcess
GlobalLock
CloseHandle
GlobalAlloc
GetVersionExA
GlobalUnlock

comctl32

ImageList_DragMove
ImageList_DragLeave
ImageList_DragEnter

advapi32

RegSetValueW
RegDeleteKeyW
RegQueryValueExW
RegCreateKeyW
RegOpenKeyExW
RegCloseKey
RegSetValueExW
RegEnumKeyExW

msimg32

AlphaBlend
TransparentBlt

winmm

timeGetTime

gdiplus

GdipCreateBitmapFromFile
GdipGetImageWidth
GdipGetImagePixelFormat
GdipGetImageHeight
GdipDisposeImage

Sections

.text
Size: 122KB - Virtual size: 122KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsr
Size: 512B - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

38edc5bdb07a0aa6ad3a38d1bbe8d6d1

Headers

File Characteristics

Imports

ole32

gdi32

user32

kernel32

comctl32

advapi32

msimg32

winmm

gdiplus

Sections

.text Size: 122KB - Virtual size: 122KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 39KB - Virtual size: 38KB

.rsr Size: 512B - Virtual size: 68KB

.text
Size: 122KB - Virtual size: 122KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 39KB - Virtual size: 38KB

.rsr
Size: 512B - Virtual size: 68KB