b46859364ac08f257e81776795529872_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

b46859364ac08f257e81776795529872_JaffaCakes118
Size

61KB
MD5

b46859364ac08f257e81776795529872
SHA1

5b622e8128e0f98fd62c4599733198135e31b6ee
SHA256

89a26bfd6cedd916bcecda97e5828485aaaa3a8f61e44355d57ac4b6da5980d3
SHA512

538b5a01a50141df5cf3069ecfc31323ece06b175b83e5caa26a2fe2ce13b163f230eb775a0944533185f50cb5e389326e4a6923b97ad1afbb620a8e998a57d0
SSDEEP

768:R33efJMSj9LnuCscHhh6uteE39bk2HnsmJWAZAHodUEBS84JSt/zn47O6c6/Vq2E:YXp7uMz6Q3ZVstAtBZ4J0/Uqeqwl2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b46859364ac08f257e81776795529872_JaffaCakes118

Files

b46859364ac08f257e81776795529872_JaffaCakes118
.exe windows:4 windows x86 arch:x86

662e20f2e86a05ec8a510c43fd06e94a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
GetSystemTimeAsFileTime
VirtualProtect
CreateEventW
LocalAlloc
GetSystemTimeAsFileTime
LocalAlloc
LeaveCriticalSection
UnhandledExceptionFilter
InterlockedIncrement
LeaveCriticalSection
InterlockedIncrement
EnterCriticalSection
CloseHandle
LeaveCriticalSection
VirtualProtect
InterlockedCompareExchange
LocalAlloc
CloseHandle
EnterCriticalSection
lstrcmpiW
HeapFree
ReadFile
LocalAlloc
lstrlenA
DisableThreadLibraryCalls
CreateEventW
LocalAlloc
lstrcmpiW
GetSystemTimeAsFileTime
LocalAlloc
ReadFile
GetProcAddress
MultiByteToWideChar
InterlockedExchange
MultiByteToWideChar
SetLastError
GetLastError
HeapAlloc
InterlockedDecrement
MultiByteToWideChar
HeapFree
CloseHandle
VirtualProtect
CreateThread
GetModuleFileNameA
InterlockedIncrement
VirtualProtect
GetVersionExA
InterlockedIncrement
LoadLibraryA
InterlockedDecrement
InterlockedDecrement
lstrlenA

gdi32

CreateCompatibleDC
Polygon
CreateBitmap
Rectangle
CreateDIBitmap
BitBlt
RoundRect
SetBrushOrgEx
SelectObject
CreateFontIndirectA
LineTo
CreatePen
MoveToEx
GetPixel
BitBlt
SetTextColor
CreateFontIndirectA
Ellipse
GetWindowOrgEx
SetBkColor
CreateFontIndirectA
GetPixel
CreateFontA
CreateBitmap
GetPixel
SetBkMode
MoveToEx
RoundRect
BitBlt
CreateCompatibleDC
CreateDIBSection
CreateDIBSection
CreateDIBitmap
RoundRect
CreateRectRgn
SetBrushOrgEx
PatBlt
SetTextColor
StretchBlt
LineTo
RoundRect
CreateFontIndirectA
LineTo
LineTo
SetWindowExtEx
RoundRect
GetBrushOrgEx
CreateDIBitmap
GetWindowOrgEx
CreatePen
StretchBlt
GetBrushOrgEx
CreateFontA
CreateFontIndirectA

Sections

.text
Size: 51KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

662e20f2e86a05ec8a510c43fd06e94a

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

gdi32

Sections

.text Size: 51KB - Virtual size: 60KB

.data Size: 512B - Virtual size: 4KB

.rdata Size: 3KB - Virtual size: 4KB

.rsrc Size: 5KB - Virtual size: 8KB

.text
Size: 51KB - Virtual size: 60KB

.data
Size: 512B - Virtual size: 4KB

.rdata
Size: 3KB - Virtual size: 4KB

.rsrc
Size: 5KB - Virtual size: 8KB