b6a1f09ade9dc71c7fbc903f75e765c0_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b6a1f09ade9dc71c7fbc903f75e765c0_JaffaCakes118
Size

292KB
MD5

b6a1f09ade9dc71c7fbc903f75e765c0
SHA1

2769ac5d76cb3f95d99b1b19a302a7e9daafd761
SHA256

98e499644ff7b29584c7638b6aaa351f3ccb80c48584966542a6f7b907c4e1db
SHA512

0e28d6798b2379bd020d694c9e68203997e4a27a8807cdd80ade274762737d1ef1c6be2fe9052414c548d3d42aaef7acd8e098b4d154d64798548f89680319c9
SSDEEP

6144:y6KYUASfq3GlB0AvGGFXH1T7+rRaAVOlMumySOeL:lUA81MmGS7+clM/x

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b6a1f09ade9dc71c7fbc903f75e765c0_JaffaCakes118

Files

b6a1f09ade9dc71c7fbc903f75e765c0_JaffaCakes118
.exe windows:5 windows x86 arch:x86

1c2ad016ffb8dcd17c4cabe088e48a94

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msimg32

AlphaBlend
TransparentBlt

kernel32

GetLocaleInfoW
GetLastError
SetLastError
ReadFile
MultiByteToWideChar
GetFileType
GetEnvironmentStringsW
GetDriveTypeW
GetOEMCP
GetCommandLineW
GetACP
FreeEnvironmentStringsW
FindResourceW
GetProcAddress
GetModuleHandleW
GetModuleFileNameW
LoadResource
GetStartupInfoW
GetStdHandle
GetStringTypeW
GetSystemTimeAsFileTime
lstrcpyW
lstrcpynW
lstrlenW
IsValidCodePage
lstrcatW
lstrcmpiW
SizeofResource
Sleep
WideCharToMultiByte
SetErrorMode
ExitProcess
GetTickCount
GetCPInfo

user32

GetSystemMetrics
GetSysColorBrush
GetSubMenu
GetMessageW
GetWindowLongW
GetKeyNameTextW
SetWindowPos
SetTimer
SetMenuDefaultItem
SetForegroundWindow
SetFocus
SetDlgItemTextW
SetCursor
SendNotifyMessageW
SendMessageW
RedrawWindow
PostQuitMessage
PostMessageW
GetForegroundWindow
GetFocus
GetDlgItem
GetDlgCtrlID
GetDC
GetCursorPos
GetClientRect
GetClassNameW
GetClassLongW
FindWindowW
FillRect
EndDialog
EnableWindow
DrawTextW
DispatchMessageW
CreateWindowExW
CreatePopupMenu
DestroyMenu
DestroyIcon
DeleteMenu
DefWindowProcW
CreateDialogIndirectParamW
CheckDlgButton
AppendMenuW
DialogBoxIndirectParamW
DestroyWindow
LoadStringW
GetWindowRect
GetWindowRgn
GetWindowTextW
MapWindowPoints
IsDlgButtonChecked
LoadBitmapW
LoadCursorW
LoadIconW
LoadImageW
MessageBoxW
SetWindowRgn
SetWindowTextW
ShowWindow
SystemParametersInfoW
TrackPopupMenu
TranslateMessage
WindowFromPoint
wsprintfW
DialogBoxParamW
GetMenu

gdi32

SetBkMode
SetBkColor
SelectObject
GetDeviceCaps
ExtTextOutW
EqualRgn
SetTextColor
DeleteObject
DeleteDC
CreateFontIndirectW
CreateFontW
CreateCompatibleDC
CombineRgn
GetStockObject
CreateRectRgn
GetTextExtentPoint32W

comdlg32

GetSaveFileNameW
GetOpenFileNameW

ole32

CreateStreamOnHGlobal

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 283KB - Virtual size: 282KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1c2ad016ffb8dcd17c4cabe088e48a94

Headers

DLL Characteristics

File Characteristics

Imports

msimg32

kernel32

user32

gdi32

comdlg32

ole32

Sections

.text Size: 4KB - Virtual size: 3KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 512B - Virtual size: 1KB

.rsrc Size: 283KB - Virtual size: 282KB

.text
Size: 4KB - Virtual size: 3KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 512B - Virtual size: 1KB

.rsrc
Size: 283KB - Virtual size: 282KB