d5f07d6576312f15cf645e6d500a4e62_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

d5f07d6576312f15cf645e6d500a4e62_JaffaCakes118
Size

48KB
MD5

d5f07d6576312f15cf645e6d500a4e62
SHA1

3ef87feb839c5483befa7e15e58ebd4012a6057a
SHA256

d7132710d8b649235fb1e1514c79292e99791b2460def2f26b8a8c2bb38068a7
SHA512

7e277e17bf52b47880d79ec26a54ce3fa0970691c3aa5a00a86a18e74997d99d066c8c48d4b86d4b61fc8c03d38fb57c9a3db189e94061b1d7defcfbed41bb19
SSDEEP

768:OC8F+Dy7gUp5KB63iAgXgvWOg37UJR/qozCo5HVW8IHDPIdnn3ezfR1tj2Wa:OBFIFUpUei5O1RXzCozZIjPA3ezfLt6W

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d5f07d6576312f15cf645e6d500a4e62_JaffaCakes118

Files

d5f07d6576312f15cf645e6d500a4e62_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4d5ded26bbaa0ec2edddc91d83c03c60

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

DeleteObject
CreateDIBitmap
GetDeviceCaps
SetBkMode
CreateSolidBrush
ExtTextOutW
GetTextExtentPointW
SetBkColor
PatBlt
IntersectClipRect
SetTextColor
CreateCompatibleDC
DeleteDC
BitBlt
SelectObject

ntdll

NtFindAtom

adsldpc

ADsFreeColumn

kernel32

GetProcAddress
LeaveCriticalSection
GlobalAlloc
GetModuleHandleA
InitializeCriticalSection
GetVersion
VirtualAlloc
SizeofResource
GlobalFree
GetSystemDirectoryW
GetCurrentThreadId
EnterCriticalSection
GetProfileStringW
lstrcmpiW
FindResourceW
lstrcmpW
GlobalDeleteAtom
GetModuleFileNameW
lstrlenW
LoadResource
GlobalAddAtomW
GetWindowsDirectoryW

user32

GetFocus
OffsetRect
GetClassInfoW
IsWindowEnabled
EndPaint
CallWindowProcW
InvalidateRect
ReleaseDC
SendMessageW
CharNextW
SetWindowsHookExW
GetWindowRect
GetWindowTextLengthW
ValidateRect
IntersectRect
UnhookWindowsHookEx
MessageBoxA
GetWindowTextW
CallNextHookEx
SetWindowLongW
ShowCaret
ExcludeUpdateRgn
SetPropW
IsIconic
HideCaret
SetWindowLongA
GetClientRect
DefDlgProcW
GetPropW
BeginPaint
GetSystemMetrics
RemovePropW
GetSysColor
GetDC
GetParent
IsWindowUnicode
DefWindowProcW
InflateRect
GetClassNameW
DrawFocusRect
GetWindowDC
DrawTextW
GetWindowLongW
GetWindow
MapWindowPoints
ClientToScreen
CharPrevW
ScreenToClient

ws2_32

WSAGetLastError

Sections

.textbss
Size: - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 512B - Virtual size: 444B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 448B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.idata
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

4d5ded26bbaa0ec2edddc91d83c03c60

Headers

File Characteristics

Imports

gdi32

ntdll

adsldpc

kernel32

user32

ws2_32

Sections

.textbss Size: - Virtual size: 1.3MB

.text Size: 512B - Virtual size: 444B

.rdata Size: 512B - Virtual size: 32B

.reloc Size: 512B - Virtual size: 448B

.idata Size: 45KB - Virtual size: 45KB

.textbss
Size: - Virtual size: 1.3MB

.text
Size: 512B - Virtual size: 444B

.rdata
Size: 512B - Virtual size: 32B

.reloc
Size: 512B - Virtual size: 448B

.idata
Size: 45KB - Virtual size: 45KB