b68f0918bcb9d0278a3d5eb8b31fe3cb_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

b68f0918bcb9d0278a3d5eb8b31fe3cb_JaffaCakes118
Size

161KB
MD5

b68f0918bcb9d0278a3d5eb8b31fe3cb
SHA1

5c0e3b1b995e071a19b3ae9384274f487876fe74
SHA256

3a3a35a7df086a2124d8488d00c1c3e06fe18920c62776b010a2750bb45f46d6
SHA512

8b519bbb91fed4fad0ce1d434e4a3bc183facee6dad19f646086dcfcacac65728641aee07c4dfe7f541ae82195b573e99a8d26b482fa3e847384941ef3da8e52
SSDEEP

3072:WZaNQRcXhG1Ijmqrwa0ipf8b71Af7oVxzaOMJYk5CkawdSEPiZ:PWcXhG13qrwa3pfu6joQBX0klY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b68f0918bcb9d0278a3d5eb8b31fe3cb_JaffaCakes118

Files

b68f0918bcb9d0278a3d5eb8b31fe3cb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6a061d3e2d18a6163127bbb0b1c55b3a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
GetProcAddress
GetModuleHandleW
GetTickCount
lstrlenA
LoadLibraryW
GetModuleFileNameA
GetCurrentThreadId
LoadLibraryW
VirtualProtect
LoadLibraryA
LocalFree
CreateThread
MultiByteToWideChar
SetLastError
UnhandledExceptionFilter
InterlockedCompareExchange
InterlockedCompareExchange
GetVersionExA
CreateEventW
VirtualAlloc
FreeLibrary
lstrcmpiW
CreateThread
EnterCriticalSection
InterlockedExchange
GetVersionExA
HeapFree
InterlockedExchange
LoadLibraryW
LeaveCriticalSection
GetModuleFileNameA
Sleep
CreateFileW
DeleteCriticalSection
CreateThread
InterlockedIncrement
GetCurrentProcessId
GetModuleHandleW
HeapFree
lstrlenA
InterlockedIncrement
LeaveCriticalSection
CreateFileW
InterlockedIncrement
DeleteCriticalSection
CreateEventW
GetCurrentThreadId
GetCurrentProcess
CreateFileW
LocalAlloc

gdi32

CreateDIBSection
SetWindowExtEx
CreateCompatibleDC
SetBrushOrgEx
GetCurrentObject
SetTextColor
GetWindowOrgEx
GetWindowExtEx
CreateDIBitmap
StretchBlt
GetBrushOrgEx
SetTextColor
Ellipse
GetCurrentObject
SetBkMode
SetPixel
SetBkMode
CreateDIBSection
StretchBlt
CreateCompatibleDC
SetPixel
PatBlt
GetWindowExtEx
SetWindowOrgEx
GetCurrentObject
CreateBitmapIndirect
CreateRectRgn
SetBrushOrgEx
SetBkMode
SetWindowOrgEx
PatBlt
Polygon
SetBkColor
SetBkMode
SetBkColor
GetPixel
CreateRectRgn
CreateDIBitmap
SetBrushOrgEx
BitBlt
SetBkMode
GetPixel
CreateBitmapIndirect
GetWindowExtEx
SetWindowExtEx
GetPixel
SetWindowOrgEx
CreateBitmapIndirect
Ellipse
GetBrushOrgEx
CreateCompatibleDC
PatBlt
GetBrushOrgEx
SetTextColor
SetWindowOrgEx
SetBkColor
GetCurrentObject

Sections

.text
Size: 145KB - Virtual size: 216KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 11KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6a061d3e2d18a6163127bbb0b1c55b3a

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

gdi32

Sections

.text Size: 145KB - Virtual size: 216KB

.data Size: 512B - Virtual size: 4KB

.rdata Size: 3KB - Virtual size: 4KB

.rsrc Size: 11KB - Virtual size: 12KB

.text
Size: 145KB - Virtual size: 216KB

.data
Size: 512B - Virtual size: 4KB

.rdata
Size: 3KB - Virtual size: 4KB

.rsrc
Size: 11KB - Virtual size: 12KB