db1a4532d3e62a6aed92e0f48895e8cd_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

db1a4532d3e62a6aed92e0f48895e8cd_JaffaCakes118
Size

80KB
MD5

db1a4532d3e62a6aed92e0f48895e8cd
SHA1

828c07fa1e4e525661290f3be088577de7c59a55
SHA256

070da226f5d3e9747105678bed142763c3cde2f0fb7f4095914f45258b412577
SHA512

ddf315baa307850aea7d9076a7471a5732cad3d4b4eee2282bf2c91b274dab5ab23542deadcbafc0376452e9b9f707df8ab742b16d5521d6b68149fdb4fe6689
SSDEEP

1536:lGC5A/7zW9EoGxZJMRCI+Zz4EaVBRCQ65d8dHaQI8Tq9RIOKXK:S/7zW96MwIoMEazRCRD/QIR9U

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
db1a4532d3e62a6aed92e0f48895e8cd_JaffaCakes118

Files

db1a4532d3e62a6aed92e0f48895e8cd_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0e088ad3fa0fc2097075f7bde310639d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RtlUnwind
FreeLibrary
GetCommandLineA
InterlockedExchange
MapViewOfFile
MapViewOfFile
SystemTimeToFileTime
GetTimeFormatW
CreateFileW
VirtualAlloc
GetVersionExA
GetConsoleOutputCP
CreateDirectoryA
GetCurrentProcessId
ExitProcess
SetFilePointer
lstrcpynW
LoadLibraryA
HeapFree
GetLastError
GetProcAddress
DeviceIoControl
GetModuleHandleW
GetModuleHandleA
SetStdHandle
GetCurrentThreadId
Sleep
VirtualAlloc
CreateProcessA
GetCurrentThread
GlobalUnlock
GetTempFileNameW
GetSystemTime
DosDateTimeToFileTime
LoadLibraryA
ReadFile
GetVolumeInformationW
GetFileInformationByHandle

msvcrt

_snwprintf
strchr
memmove
_wtoi
wcstol
is_wctype
wcscpy
_wcsicmp
_except_handler3
fflush
memcpy
strncpy
_onexit
toupper
_initterm
__CxxFrameHandler
_wtol
_XcptFilter
_vsnprintf
_exit
__getmainargs
fprintf
__wgetmainargs
malloc

user32

DestroyWindow
EnableMenuItem
CopyRect
TranslateAcceleratorW
IsWindow
SetScrollPos
ShowWindow
GetProcessWindowStation
SetForegroundWindow
EnumThreadWindows
ReleaseCapture
DefDlgProcW
SetWindowsHookExW
GetActiveWindow
SetFocus
GetFocus
DrawTextW
RedrawWindow
SetTimer
FillRect
LoadStringW
GetAsyncKeyState
CheckMenuItem
CheckDlgButton
BeginPaint
GetCapture
CharUpperW
DefWindowProcW

gdi32

TextOutW
ExtTextOutW
TranslateCharsetInfo
RealizePalette
RestoreDC
SelectPalette
GetTextExtentPoint32W
SetWindowExtEx
GetTextExtentPointW
SetBkMode
SetBkColor
CreatePalette
SaveDC
StretchBlt
GetObjectW
PatBlt

opengl32

glClearDepth

Exports

Exports

YbwlgtcVxzwbwDund
SfxHvfxqnZxhozfvRdl
NnvnMxnrouzRan
FrltPfjdcmXua

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 91B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lsd0
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.lsd1
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 48B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0e088ad3fa0fc2097075f7bde310639d

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

gdi32

opengl32

Exports

Exports

Sections

.text Size: 6KB - Virtual size: 6KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 512B - Virtual size: 91B

.lsd0 Size: 1KB - Virtual size: 1KB

.lsd1 Size: 1KB - Virtual size: 1KB

.rsrc Size: 66KB - Virtual size: 66KB

.reloc Size: 512B - Virtual size: 48B

.text
Size: 6KB - Virtual size: 6KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 512B - Virtual size: 91B

.lsd0
Size: 1KB - Virtual size: 1KB

.lsd1
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 66KB - Virtual size: 66KB

.reloc
Size: 512B - Virtual size: 48B