db25b0ec057bbb9cea91e4b5c20e0c1d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

db25b0ec057bbb9cea91e4b5c20e0c1d_JaffaCakes118
Size

35KB
MD5

db25b0ec057bbb9cea91e4b5c20e0c1d
SHA1

74be59831c493378edd1b9dfc5c9bbdd92d2873a
SHA256

1a070098ac6b7960f8f28ca372ebc3c3ca995eb336ce6e42f1a7fe7682e59661
SHA512

af909e8405a82388c5f37fff81135701d3b4b96a0daf4f6bf57c9d89a969ba15533a8e78426d61a72d48d0f9617623d275dd125b73846a59a419e1383e09e575
SSDEEP

768:eQtQvGelm42GXnC5KgbtO+X08HLd7eoRTTBZ:Ha792lKgb1VN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
db25b0ec057bbb9cea91e4b5c20e0c1d_JaffaCakes118

Files

db25b0ec057bbb9cea91e4b5c20e0c1d_JaffaCakes118
.exe windows:5 windows x86 arch:x86

72b54607021b0651e3240452d034d9af

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
lstrlenA
VirtualAlloc
LoadLibraryW
GetModuleFileNameA
QueryPerformanceCounter
GetModuleFileNameA
LoadLibraryW
VirtualProtect
GetTickCount
EnterCriticalSection
InterlockedExchange
GetCurrentThreadId
CreateThread
LoadLibraryW
lstrcmpiW
LoadLibraryA
EnterCriticalSection
InterlockedCompareExchange
LeaveCriticalSection
LocalFree
GetModuleFileNameA
DisableThreadLibraryCalls
GetVersionExA
VirtualProtect
ReadFile
lstrcmpiW
MultiByteToWideChar
UnhandledExceptionFilter
HeapFree
InterlockedExchange
InterlockedCompareExchange
GetModuleHandleW
GetProcAddress
LoadLibraryW
CloseHandle
DeleteCriticalSection
GetProcessHeap
HeapDestroy
DeleteCriticalSection
GetCurrentProcessId
GetModuleFileNameW
CreateFileW
LocalAlloc
VirtualAlloc
GetLastError
InterlockedCompareExchange
HeapAlloc
Sleep
CreateEventW
GetCurrentProcess
HeapAlloc
SetLastError
CreateThread
GetProcAddress
HeapFree
GetLastError
LocalAlloc
LoadLibraryA
SetLastError
GetCurrentProcessId
DisableThreadLibraryCalls
EnterCriticalSection
GetModuleHandleA
SetLastError
GetModuleHandleW
HeapDestroy
GetModuleHandleW
DeleteCriticalSection
GetModuleFileNameW
GetModuleHandleW
DeleteCriticalSection
HeapFree
ReadFile
GetProcessHeap
VirtualProtect
lstrcmpiW
GetCurrentProcess
LocalAlloc
GetModuleHandleA
InterlockedIncrement

user32

EnableWindow
SendDlgItemMessageW
PostQuitMessage
GetDC
SetWindowLongW
GetParent
CreateWindowExW
SetWindowPos
InvalidateRect
GetSysColor
ShowWindow
SetWindowLongW
SendMessageW
GetDlgItem
IsDlgButtonChecked
GetDesktopWindow
ShowWindow
GetSystemMetrics
CreateWindowExW
SendDlgItemMessageW
InvalidateRect
SendMessageW
SetCursor
LoadStringW
GetWindowRect
IsWindow
SetDlgItemTextW
CreateWindowExW
SetCursor
EnableWindow
GetWindowRect
GetParent
SetDlgItemTextW
PostMessageW
GetDesktopWindow
SetFocus
BeginPaint
LoadStringW
SendMessageW
GetFocus
CharNextW
SetCursor
KillTimer
SetTimer
SendDlgItemMessageW
wsprintfA
BeginPaint
GetClientRect
DestroyWindow
PostQuitMessage
IsWindow
GetParent
SetTimer
IsWindow
GetFocus
KillTimer
DestroyWindow
GetDesktopWindow
GetParent
GetSysColor
CharNextW
PostQuitMessage
GetClientRect
GetDC
GetParent
KillTimer
DialogBoxParamW
PeekMessageW
IsDlgButtonChecked
LoadIconW
SetCursor
SetForegroundWindow
ReleaseDC
SendDlgItemMessageW
IsDlgButtonChecked
ShowWindow
ShowWindow
SetWindowLongW
GetSystemMetrics
LoadIconW
GetParent
LoadIconW
GetFocus
LoadIconW
DestroyWindow
EndPaint
SetFocus
GetParent
GetDlgItem

Sections

.text
Size: 26KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

72b54607021b0651e3240452d034d9af

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 26KB - Virtual size: 48KB

.rdata Size: 4KB - Virtual size: 8KB

.pdata Size: - Virtual size: 4KB

.rsrc Size: 3KB - Virtual size: 4KB

.text
Size: 26KB - Virtual size: 48KB

.rdata
Size: 4KB - Virtual size: 8KB

.pdata
Size: - Virtual size: 4KB

.rsrc
Size: 3KB - Virtual size: 4KB