c082f14cf7595b35478852a00a9dcecc_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

c082f14cf7595b35478852a00a9dcecc_JaffaCakes118
Size

120KB
MD5

c082f14cf7595b35478852a00a9dcecc
SHA1

8764ffa4ea415f5da0da5820ac8b4d186d18a81e
SHA256

74dd4182e86220623912ac1d44787ce10b61cdf0bb9918421a31e92d41b158c3
SHA512

7f397d18ff2a4cdd6634c3e76c917f2e411c3952c232b997691cd830158067b65a586d0b631cd0bb5b1a0bd3239ca90088b8e0e139c9acde9e94a1870e7b6302
SSDEEP

1536:1b46tRkrPP9L9a6IYv392ANhgjcPnQkeDh2oMRqxicFr+EW+s53Bsx/Uf3AFZ+zM:1b46t0xTnv3phnQkeDh83N/B0iAZsCZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c082f14cf7595b35478852a00a9dcecc_JaffaCakes118

Files

c082f14cf7595b35478852a00a9dcecc_JaffaCakes118
.exe windows:4 windows x86 arch:x86

de3a65f7064f4a2c086a012fe0305e05

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_WDM_DRIVER

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcess
OutputDebugStringA
VirtualProtect
BuildCommDCBAndTimeoutsW
GetLastError
ExitThread
GetProcAddress
_lclose
GetWindowsDirectoryA
VirtualAlloc
FreeLibrary
lstrlenA
GetModuleHandleA
WriteConsoleW
GetModuleHandleW
VirtualFree
FindFirstFileW
HeapAlloc
BuildCommDCBW
LoadLibraryW
GetStringTypeW

msvcrt

_c_exit
__p__commode
wcscpy
__dllonexit
_iob
isdigit
_except_handler3
free
_vsnprintf
memcpy
swscanf
malloc
wcscat
__winitenv
_ftol
wcscmp
_adjust_fdiv
wcschr
_cexit
__p__fmode
_controlfp
_wtol
wcslen
_wcmdln
strncpy
_purecall
_exit
__initenv
swprintf
_snwprintf
__CxxFrameHandler

user32

ClientToScreen
MapWindowPoints
ReleaseCapture
IsWindow
CopyRect
DestroyWindow
ReleaseDC
DialogBoxParamA
wsprintfW
RegisterClassA
GetParent
LoadMenuW
DispatchMessageW
LoadCursorW
GetProcessWindowStation
LoadImageW
ScreenToClient
SendMessageW
SetScrollPos
GetCursorPos
BeginPaint
GetMenuItemCount
SetCapture
SendMessageA
LoadCursorA
UnregisterClassW
CheckDlgButton

shell32

ShellExecuteW
SHGetFileInfoW
SHGetPathFromIDListW
SHGetFolderPathW

opengl32

glColor4i
glColor4d
glColor3ui
GlmfBeginGlsBlock
glStencilMask
glTexCoord2dv
glFogfv
glTexCoord2d
wglShareLists
glColor4f

Exports

Exports

KmmbTobyhhTytqsGf
BxsUoytkpPsl
TanudMqnek

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 124B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 70KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 98B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

de3a65f7064f4a2c086a012fe0305e05

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

shell32

opengl32

Exports

Exports

Sections

.text Size: 13KB - Virtual size: 13KB

.rdata Size: 2KB - Virtual size: 2KB

.edata Size: 512B - Virtual size: 124B

.data Size: 70KB - Virtual size: 70KB

.rsrc Size: 31KB - Virtual size: 31KB

.reloc Size: 512B - Virtual size: 98B

.text
Size: 13KB - Virtual size: 13KB

.rdata
Size: 2KB - Virtual size: 2KB

.edata
Size: 512B - Virtual size: 124B

.data
Size: 70KB - Virtual size: 70KB

.rsrc
Size: 31KB - Virtual size: 31KB

.reloc
Size: 512B - Virtual size: 98B