d439dd1619457f2fa75d827f2e67bea2_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

d439dd1619457f2fa75d827f2e67bea2_JaffaCakes118
Size

299KB
MD5

d439dd1619457f2fa75d827f2e67bea2
SHA1

1dcc0a3bd05a7fa5c187138707cc09e459fa9b92
SHA256

b435d166ac499ef35d650719bd24613a0bfa72954fc06301914590d7547c5afd
SHA512

078a8577f4b70af1460f7a652a8831a31ac4e5bea0e7b370bb4c86ec45061c91559ffd1182381cc722fdf6d67313555db45d1b4944a68610d83163758559347f
SSDEEP

6144:MG88qVZkpCEGvceksDa9SACgc899Ca13wtB/1C+sjyIYv8FvGZsf:MGRhxyksmxx9MA+B/1C+ynGZsf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d439dd1619457f2fa75d827f2e67bea2_JaffaCakes118

Files

d439dd1619457f2fa75d827f2e67bea2_JaffaCakes118
.exe windows:9 windows x86 arch:x86

8204b8123731eec8c37f5e16ebd26632

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

comdlg32

CommDlgExtendedError
GetFileTitleW

user32

SetWindowLongW
SetRectEmpty
GetSubMenu
ShowCaret
ReleaseDC
EndPaint
GetClassInfoW
GetCapture
InflateRect
CreateCaret
IsWindow
LoadMenuW
PostMessageW
RegisterClipboardFormatW
GetDesktopWindow
GetKeyboardLayout
FillRect
CopyRect
SetDlgItemInt
ClientToScreen
DrawTextW
LoadCursorW
SetCursor
SetCapture
SendDlgItemMessageW
SetActiveWindow
EqualRect
ValidateRect
EnableMenuItem
CheckDlgButton
TranslateMessage
GetMenu

ole32

OleGetClipboard
CoTaskMemFree
WriteFmtUserTypeStg
CoCreateInstance
ReleaseStgMedium

shell32

ShellAboutW
SHGetFolderPathW

imm32

ImmReleaseContext
ImmNotifyIME
ImmAssociateContext

kernel32

lstrcmpW
VirtualAlloc
FileTimeToLocalFileTime
MultiByteToWideChar
GetNumberFormatW
GetLastError
GetProcAddress
FindClose
SetUnhandledExceptionFilter
UnhandledExceptionFilter
CloseHandle
GetStartupInfoW
GetThreadLocale
GlobalUnlock
GetTempFileNameW
GetCurrentThreadId
lstrcmpiW
InterlockedIncrement
LocalFree
CreateFileW
GetTempPathW
QueryPerformanceCounter
FreeLibrary
TerminateProcess
GetTimeFormatW
HeapSetInformation
SetEndOfFile
GlobalFree
GetModuleHandleW
HeapCreate
GetModuleHandleA
LoadLibraryA
RaiseException
CreateDirectoryW
VirtualFree
HeapQueryInformation
GetCurrentProcessId

gdiplus

GdipGetImageRawFormat
GdipGetImageDecoders
GdipAlloc
GdipGetImageEncodersSize
GdipDisposeImage
GdipSaveImageToFile
GdipCreateBitmapFromHBITMAP

advapi32

RegQueryValueExW
RegCreateKeyExW
RegOpenKeyExA

msvcrt

_getdcwd
_cexit
_c_exit
_onexit
_CxxThrowException
_initterm
wcscmp
_purecall
_itow
__p__commode
free
rand
_ltow
_wcsicmp
__argc
__dllonexit
wcschr
_wtoi

gdi32

CreateRectRgnIndirect
LPtoDP
CreateHalftonePalette
SetPixel
RectVisible
SetDIBColorTable
UnrealizeObject
ResizePalette
SetStretchBltMode
SetViewportExtEx
SelectObject
CreatePalette
GetNearestColor
SetTextColor
PatBlt
PlayMetaFile
MoveToEx
GetTextExtentPoint32W
FillRgn
DeleteObject
DeleteDC
BitBlt
ExtFloodFill
OffsetRgn
CreateFontIndirectW
RoundRect
CreateDIBSection
GetObjectW
CreateSolidBrush
LineTo
CreateDIBitmap
CreatePatternBrush
GetCurrentObject
GetDIBColorTable
CreateCompatibleDC

Sections

.text
Size: 175KB - Virtual size: 175KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 120KB - Virtual size: 824KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8204b8123731eec8c37f5e16ebd26632

Headers

DLL Characteristics

File Characteristics

Imports

comdlg32

user32

ole32

shell32

imm32

kernel32

gdiplus

advapi32

msvcrt

gdi32

Sections

.text Size: 175KB - Virtual size: 175KB

.data Size: 3KB - Virtual size: 2KB

.rsrc Size: 120KB - Virtual size: 824KB

.text
Size: 175KB - Virtual size: 175KB

.data
Size: 3KB - Virtual size: 2KB

.rsrc
Size: 120KB - Virtual size: 824KB