dbceb423c261dd7eb87efb4221c01aba_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

dbceb423c261dd7eb87efb4221c01aba_JaffaCakes118
Size

26KB
MD5

dbceb423c261dd7eb87efb4221c01aba
SHA1

37d1800ec9ece8d8022496439457b67d4844dca4
SHA256

d9f79e23db9a58de02905d4772da034f54dcd0b6beb489a2c831c61794e2be32
SHA512

3103045ec3cef98d4d2cfbdb264152064526e649047b2dadad1a0df12e668799b3feec02cedb452ad9142bb8fcd8baf177e792dda0bd9d6e841c4da0ec9d3a8a
SSDEEP

768:v6P7whenc4GlBlfffNvMwwg+QmqMVA1D2K+BqAb:i7uTfffNpLx6uD2K+IAb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dbceb423c261dd7eb87efb4221c01aba_JaffaCakes118

Files

dbceb423c261dd7eb87efb4221c01aba_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a770529a5c450e2aa5875990d1342029

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoTaskMemFree
StringFromCLSID

gdi32

SelectObject
Polyline
SetTextColor
SetBkMode
BitBlt
GetTextColor
GetCurrentObject
LineTo
RestoreDC
SaveDC
GetDeviceCaps
IntersectClipRect
StretchBlt
SetBrushOrgEx
GetObjectW
GetBrushOrgEx
SetStretchBltMode
CreateDIBSection
GetBkMode
CreateCompatibleBitmap
ExcludeClipRect
SetViewportOrgEx
Rectangle
DeleteDC
GetBkColor
LPtoDP
OffsetViewportOrgEx
GetStockObject
DeleteObject
CreateFontIndirectW
CreateCompatibleDC
MoveToEx
GetStretchBltMode
CreatePen
CreateSolidBrush
SetBkColor
Polygon
DPtoLP

user32

GetUpdateRect
KillTimer
ClientToScreen
GetParent
DrawTextW
GetDoubleClickTime
RegisterClassExW
CreateWindowExW
DrawIcon
GetMessageW
SetCursor
PostMessageW
ReleaseCapture
ValidateRect
MoveWindow
LoadStringW
EnumChildWindows
LoadImageW
ReleaseDC
SetWindowPos
PtInRect
PostQuitMessage
DefWindowProcW
SetCapture
TranslateMessage
LoadCursorW
IsWindowVisible
GetCursorPos
InflateRect
SetFocus
SetPropW
GetDC
CallMsgFilterW
IsWindow
GetSystemMetrics
GetWindowDC
InvalidateRect
ShowWindow
ClipCursor
DispatchMessageW
FillRect
GetClientRect
OffsetRect
UnregisterClassW
wsprintfW
GetWindow
GetDesktopWindow
GetIconInfo
ScreenToClient
GetPropW
WindowFromPoint
BeginPaint
EndPaint
GetWindowRect
SendMessageW
DestroyWindow
SetTimer

shlwapi

StrCatBuffW

cfgmgr32

CM_Get_Version_Ex
CM_Move_DevNode

kernel32

CreateFileW
lstrcmpW
InitializeCriticalSection
VirtualAlloc
FileTimeToSystemTime
VirtualFree
HeapSize
HeapReAlloc
ExitProcess
lstrlenW
LCMapStringA
GetCurrentThreadId
HeapAlloc
GetModuleHandleA
IsProcessorFeaturePresent

advapi32

RegCreateKeyExW
RegCloseKey
RegQueryValueExW
RegSetValueExW
RegOpenKeyA
RegQueryValueW
RegEnumKeyExW
RegOpenKeyExW
RegQueryValueExA
RegDeleteKeyW

dinput8

DirectInput8Create

msi

MsiDatabaseExportW

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 160KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a770529a5c450e2aa5875990d1342029

Headers

DLL Characteristics

File Characteristics

Imports

ole32

gdi32

user32

shlwapi

cfgmgr32

kernel32

advapi32

dinput8

msi

Sections

.text Size: 8KB - Virtual size: 7KB

.rdata Size: 8KB - Virtual size: 8KB

.reloc Size: 512B - Virtual size: 32B

.idata Size: 3KB - Virtual size: 3KB

.rsrc Size: 2KB - Virtual size: 1KB

.data Size: 3KB - Virtual size: 160KB

.text
Size: 8KB - Virtual size: 7KB

.rdata
Size: 8KB - Virtual size: 8KB

.reloc
Size: 512B - Virtual size: 32B

.idata
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 2KB - Virtual size: 1KB

.data
Size: 3KB - Virtual size: 160KB