b750132363713ed95179782147ea7499_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b750132363713ed95179782147ea7499_JaffaCakes118
Size

184KB
MD5

b750132363713ed95179782147ea7499
SHA1

9d915a45b5a424e453c5ee324486c09d0cebb4ac
SHA256

3b1ad1be873a98d89afb6241d9f163e0ed704ed6dbaf85b777413ffbea259ea8
SHA512

444fb79a4a29f490e0cfb9f231ab9545774d17eb13d86f08d34a05ad9fe2589dba252b0b197e0df9ea77f96e27c4f5831ee9c7ee43650c144dbec3759cdd9371
SSDEEP

3072:m9Y3KMwgISid3bEyWMHqqTqMIPSJGO4pfPMTFOkrbr8zhmG21D+y/8lIMeWymIcl:maaMwgFO3IHMKquMIaQfpfgFNXr8NmrK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b750132363713ed95179782147ea7499_JaffaCakes118

Files

b750132363713ed95179782147ea7499_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e88f2a61e22762169d1f1819b401955f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

FindWindowA
RedrawWindow
DestroyMenu
GetDesktopWindow
SetCursor
ClipCursor
SetWindowPos
EnableWindow
CreatePopupMenu
SetParent
GetFocus
IsWindow
InvalidateRect
LoadCursorW
TrackPopupMenuEx
PtInRect

kernel32

CloseHandle
GlobalAlloc
WaitCommEvent
GetTickCount
DisableThreadLibraryCalls
LocalAlloc
WaitCommEvent
ExitProcess
GetCurrentProcessId
ReadFile
GetVersionExA
LoadLibraryW
GetSystemTimeAsFileTime
EnumResourceNamesW
GlobalLock
ExitProcess
CreateFileW
GetFullPathNameW
GetModuleFileNameA
LocalFree
GetCurrentThreadId
GlobalUnlock

winmm

timeGetTime

gdi32

CreateDCW
CreateCompatibleDC
CreatePen
DeleteDC
SetStretchBltMode
GetObjectType
CreateDIBSection
BitBlt
StretchBlt
LineTo
SelectObject
CreateBitmap

advapi32

RegOpenKeyExW
RegCloseKey
RegDeleteKeyW
RegSetValueExW
RegQueryValueExW
RegCreateKeyW
RegSetValueW
RegEnumKeyExW

comctl32

ImageList_DragLeave
ImageList_DragMove
ImageList_DragEnter

msimg32

AlphaBlend
TransparentBlt

gdiplus

GdipGetImageWidth
GdipGetImageHeight
GdipCreateBitmapFromFile
GdipGetImagePixelFormat
GdipDisposeImage

ole32

CoFreeUnusedLibraries
CoInitialize
CoUninitialize
StringFromGUID2
CoCreateInstance

Sections

.text
Size: 130KB - Virtual size: 129KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 50KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsr
Size: 512B - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e88f2a61e22762169d1f1819b401955f

Headers

File Characteristics

Imports

user32

kernel32

winmm

gdi32

advapi32

comctl32

msimg32

gdiplus

ole32

Sections

.text Size: 130KB - Virtual size: 129KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 50KB - Virtual size: 49KB

.rsr Size: 512B - Virtual size: 84KB

.text
Size: 130KB - Virtual size: 129KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 50KB - Virtual size: 49KB

.rsr
Size: 512B - Virtual size: 84KB