b057ba33007b75b87c7e499e37cfb29f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b057ba33007b75b87c7e499e37cfb29f_JaffaCakes118
Size

371KB
MD5

b057ba33007b75b87c7e499e37cfb29f
SHA1

c0d0c47cd26e510a8df053803107086790c10fd4
SHA256

adbcf7deda1a4a7536719eba10d0f8f69620d7e0355fc70d6528b17f26e32598
SHA512

192430eb8efd2657aec2c3157184b6f1ea34773921cca10045d5ab678fcc4223fd55e5f603f08243ca64fe6fb15e95508a4500262b02b5ad2f6ce5acadf6eb36
SSDEEP

6144:sLq/d1UJV2oQegm9rEYLPiq+rgBT8FD+YJElQoXiCKAyJxF3UteIfrPdTmik+1Ur:sLq/AKR7kvLa9gBTG9m2CKAy5ktewAsG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b057ba33007b75b87c7e499e37cfb29f_JaffaCakes118

Files

b057ba33007b75b87c7e499e37cfb29f_JaffaCakes118
.exe windows:3 windows x86 arch:x86

811653038bda65c13578672ed5bbce2a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

gdiplus

GdipCreateBitmapFromFileICM
GdipCreateBitmapFromFile
GdipGetImageDecoders
GdipSaveImageToFile
GdipCloneImage
GdipGetPropertySize
GdipGetImageEncoders
GdipGetAllPropertyItems
GdipSetPropertyItem
GdipSaveImageToStream
GdiplusShutdown
GdipDisposeImage
GdipGetImageDecodersSize
GdiplusStartup

kernel32

GetFileAttributesW
GetThreadLocale
QueryPerformanceCounter
LoadLibraryA
GlobalFree
MultiByteToWideChar
HeapAlloc
HeapSize
GetDateFormatW
SetUnhandledExceptionFilter
lstrcpyW
lstrlenA
GetLocaleInfoW
GlobalAlloc
FileTimeToLocalFileTime
lstrcmpW
FindClose
GetACP
FileTimeToSystemTime
FreeLibrary
GetCurrentThreadId
CloseHandle
LoadLibraryW
CreateFileW
GlobalLock
SetErrorMode
lstrcatW
GetModuleHandleW
TerminateProcess
GetSystemTimeAsFileTime
GetStartupInfoW
lstrlenW
GetTickCount
InterlockedDecrement
RaiseException
GetProcAddress
LocalAlloc
GetTempPathW
FindFirstFileW
GetProcessHeaps
VirtualFree
InterlockedIncrement
GetExitCodeThread
GetNumberFormatW
GetModuleHandleA
GetProcessHeap
lstrcpynW
SetEndOfFile
InterlockedExchange
IsDBCSLeadByte
GetFileTime
LocalFree
GlobalReAlloc
VirtualAlloc
MulDiv

gdi32

ResizePalette
SelectPalette
TranslateCharsetInfo
CreatePalette
CreateRectRgnIndirect
CreatePatternBrush
PtVisible
GetTextColor
DeleteDC
CreateCompatibleBitmap
GetTextExtentPoint32W
Rectangle
Ellipse
SetViewportExtEx
UnrealizeObject
BitBlt
RestoreDC
EnumFontFamiliesExW
SetDIBits
GetNearestColor
GetPaletteEntries
StretchDIBits
SetTextAlign
DeleteObject
GetTextMetricsW
GetDeviceCaps
GetDIBColorTable
PatBlt
CreateCompatibleDC
CreatePen
CreateFontIndirectW
FillRgn
EnumFontFamiliesW
CreateSolidBrush
MoveToEx
OffsetRgn
SetDIBColorTable
RealizePalette
PolyBezier
SetStretchBltMode
StretchBlt
TextOutW
SelectObject
SetPaletteEntries
GetPixel
LPtoDP
GetCurrentObject
GetObjectW
CreateDIBSection
GetBkMode

ole32

ReleaseStgMedium
WriteFmtUserTypeStg
CoUninitialize
CoGetInterfaceAndReleaseStream
OleGetClipboard
CoMarshalInterThreadInterfaceInStream
CoCreateInstance
CLSIDFromString
PropVariantClear
CoInitialize

user32

SendDlgItemMessageW
EnableScrollBar
HideCaret
IntersectRect
GetClientRect
FrameRect
CheckDlgButton
GrayStringW
ValidateRect
GetCaretPos
LoadIconW
BeginPaint
EnableWindow
SetCaretPos
SendMessageW
BringWindowToTop
EndPaint
PeekMessageW
GetFocus
IsWindowVisible
wsprintfW
DrawTextW
PostMessageW
wvsprintfW
IsMenu
GetCapture
GetKeyboardLayout
WinHelpW
KillTimer
SetRectEmpty
SetCursor
SystemParametersInfoW
IsClipboardFormatAvailable
DispatchMessageW
ReleaseCapture
GetClassInfoW
FillRect
MsgWaitForMultipleObjects
SetActiveWindow
CreateCaret
GetSysColor
SetTimer
DestroyWindow
LoadMenuW
SetDlgItemInt
TranslateMessage
GetKeyState
RemoveMenu
OffsetRect
GetDlgItem
LoadBitmapW
GetDC
CopyRect
ShowCaret
GetSystemMetrics
RegisterClipboardFormatW
UnionRect
GetWindowRect
ShowCursor
GetSubMenu
SetCapture
SetRect
SetWindowTextW
InvalidateRect
WindowFromPoint
DestroyIcon
ClientToScreen
EnableMenuItem
GetParent
GetWindowDC

Sections

.text
Size: 192KB - Virtual size: 192KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 174KB - Virtual size: 848KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

811653038bda65c13578672ed5bbce2a

Headers

DLL Characteristics

File Characteristics

Imports

gdiplus

kernel32

gdi32

ole32

user32

Sections

.text Size: 192KB - Virtual size: 192KB

.data Size: 3KB - Virtual size: 3KB

.rsrc Size: 174KB - Virtual size: 848KB

.text
Size: 192KB - Virtual size: 192KB

.data
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 174KB - Virtual size: 848KB