bf59237884bd803e01a27f9fa2befdc7_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

bf59237884bd803e01a27f9fa2befdc7_JaffaCakes118
Size

136KB
MD5

bf59237884bd803e01a27f9fa2befdc7
SHA1

7efd6866944d4d12503bdc1b1df3ce46086b8da5
SHA256

c48604c45a5f4f44c3d65b227557b3c402d7fe515af7b299e57f55a69d1319fb
SHA512

6e2bacee9d551b8b0c4ea248a39535175e025237f0c4663953fdded565ca869c9145d2aaf77e39826b33451add896c30c3e3fbc6243b1812a298ee2016ab493c
SSDEEP

3072:c5TzFoJLy54LQOCI3qOe4ln3SE+/f+NiEp6Y4iwJu1Bla3wa9:c5TML7TCI3orx2Nbp4IHra

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bf59237884bd803e01a27f9fa2befdc7_JaffaCakes118

Files

bf59237884bd803e01a27f9fa2befdc7_JaffaCakes118
.exe windows:5 windows x86 arch:x86

250fda79febe64b99ef938228f8fd939

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

UpdateResourceA
VirtualFree
LoadLibraryW
HeapAlloc
VirtualProtect
FindFirstFileW
ExitThread
GetCurrentProcess
_lclose
GetProcAddress
DeleteTimerQueue
UnmapViewOfFile
OutputDebugStringA
GetLastError
GetModuleHandleA
GetStringTypeW
WriteConsoleW
GetWindowsDirectoryA
VirtualAlloc
lstrlenA
FreeLibrary

msvcrt

wcslen
_wcmdln
__CxxFrameHandler
__p__commode
__initenv
_adjust_fdiv
wcscmp
wcschr
_c_exit
free
swscanf
_exit
_controlfp
_ftol
_iob
wcscat
__p__fmode
_snwprintf
memcpy
swprintf
strncpy
_purecall
_except_handler3
_wtol
iswcntrl
__winitenv
wcscpy
__dllonexit
_vsnprintf
malloc
_cexit

user32

RegisterClassA
DestroyWindow
SetScrollPos
CheckDlgButton
DialogBoxParamA
ReleaseDC
ReleaseCapture
BeginPaint
LoadCursorA
ScreenToClient
GetCursorPos
IsWindow
SendMessageW
SetCapture
SendMessageA
LoadCursorW
GetParent
LoadMenuW
DispatchMessageW
GetMenuItemCount
MapWindowPoints
CopyRect
GetProcessWindowStation
wsprintfW
LoadImageW
UnregisterClassW
ClientToScreen

gdi32

CreateBitmap
SetTextColor
RestoreDC
SetBkMode
Rectangle
TranslateCharsetInfo
CreateCompatibleDC
StretchBlt
PatBlt
CreateFontIndirectW

opengl32

wglShareLists
glStencilMask
GlmfBeginGlsBlock
glTexCoord2d
glColor4i
glColor4f
glColor3ui
glFogfv
glColor4d
glTexCoord2dv

Exports

Exports

MbmUbbkdurQicmn
TfbufkePmbyvqk
ZwPszbjiePisetg

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.crt
Size: 512B - Virtual size: 17B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 124B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 55KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

250fda79febe64b99ef938228f8fd939

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

gdi32

opengl32

Exports

Exports

Sections

.text Size: 12KB - Virtual size: 12KB

.rdata Size: 2KB - Virtual size: 2KB

.crt Size: 512B - Virtual size: 17B

.edata Size: 512B - Virtual size: 124B

.data Size: 55KB - Virtual size: 54KB

.rsrc Size: 64KB - Virtual size: 63KB

.reloc Size: 512B - Virtual size: 100B

.text
Size: 12KB - Virtual size: 12KB

.rdata
Size: 2KB - Virtual size: 2KB

.crt
Size: 512B - Virtual size: 17B

.edata
Size: 512B - Virtual size: 124B

.data
Size: 55KB - Virtual size: 54KB

.rsrc
Size: 64KB - Virtual size: 63KB

.reloc
Size: 512B - Virtual size: 100B