c124db36c6b914038abba4c57e1fc235_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

c124db36c6b914038abba4c57e1fc235_JaffaCakes118
Size

183KB
MD5

c124db36c6b914038abba4c57e1fc235
SHA1

87116dc3a7caa0b8c4c14410664c68371e0b82ca
SHA256

5f6ca1dbd3875a12a765d9f83226d96ad344a2281533f72d77e7971169ac155c
SHA512

beab099cb68e71faa11040c60a0a485cb0426902cf230352bbc1ef163247b4d143fa963299d6e495a54dd0b73e14e3519cc47367c38ed36818a9198fe6cc68cc
SSDEEP

3072:KmhgUTSU+/I5ufRHLa6WwS+X9oPsZCYhsyNohdsmJlGujXlqsXN+C3:KmhgU2La6Wk9oPsZCYHNo1J4u7lBB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c124db36c6b914038abba4c57e1fc235_JaffaCakes118

Files

c124db36c6b914038abba4c57e1fc235_JaffaCakes118
.exe windows:5 windows x86 arch:x86

d3786c6c09ec15a2d365f8c74855ca3a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetWindowRect
MessageBoxA
AdjustWindowRect
EndDialog
InvalidateRect
wsprintfA
SetWindowTextA
DrawMenuBar
BeginPaint
EndPaint
IsIconic
MoveWindow
PostQuitMessage
GetWindowLongA
DialogBoxParamA
DefWindowProcA
EnableMenuItem
LoadStringA
SendMessageA
SetWindowPos
PostMessageA
GetMessageA
TranslateMessage
DispatchMessageA
MessageBeep
LoadIconA
LoadCursorA
RegisterClassA
GetSystemMetrics
CreateWindowExA
GetMenu
ShowWindow
UpdateWindow
DestroyWindow

comdlg32

GetOpenFileNameA

kernel32

GetModuleHandleA
RtlUnwind
InitializeCriticalSection
Sleep
SetEnvironmentVariableA
CompareStringW
CompareStringA
GetCurrentProcessId
InterlockedDecrement
GetCurrentThreadId
SetLastError
InterlockedIncrement
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetLastError
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
IsDebuggerPresent
GetVersionExA
LCMapStringA
MultiByteToWideChar
LCMapStringW
lstrcpyA
SetHandleCount
LoadLibraryA
HeapReAlloc
GetProcAddress
EnumSystemLocalesA
GetConsoleMode
GetConsoleCP
GetTimeZoneInformation
GetDateFormatA
GetTimeFormatA
QueryPerformanceCounter
FlushFileBuffers
IsValidCodePage
VirtualQuery
GetSystemInfo
VirtualProtect
HeapSize
SetStdHandle
SetUnhandledExceptionFilter
GetSystemTimeAsFileTime
GetStartupInfoW
GetProcessHeap
RaiseException
GetLocaleInfoA
GetTickCount
GlobalFlags
GlobalAddAtomW
GlobalFindAtomW
GetStringTypeW
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
GetStringTypeA
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
VirtualFree
HeapFree
WriteFile
GetCPInfo
GetACP
GetOEMCP
HeapAlloc
VirtualAlloc

Sections

.text
Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 106KB - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d3786c6c09ec15a2d365f8c74855ca3a

Headers

DLL Characteristics

File Characteristics

Imports

user32

comdlg32

kernel32

Sections

.text Size: 66KB - Virtual size: 66KB

.rdata Size: 106KB - Virtual size: 106KB

.data Size: 3KB - Virtual size: 86KB

.rsrc Size: 5KB - Virtual size: 5KB

.text
Size: 66KB - Virtual size: 66KB

.rdata
Size: 106KB - Virtual size: 106KB

.data
Size: 3KB - Virtual size: 86KB

.rsrc
Size: 5KB - Virtual size: 5KB