dc8935e876f96b03b3ca5b16010b5ef0_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

dc8935e876f96b03b3ca5b16010b5ef0_JaffaCakes118
Size

246KB
MD5

dc8935e876f96b03b3ca5b16010b5ef0
SHA1

4ae5ca1248dbe9a4a1f011e25b26579d7a2d6a21
SHA256

e70dfc97e2149cbecf062a20a82e6fcf2893f1731bd13542badaf186eb46ec41
SHA512

872d0f2f27ce47cae6664efc20a75c4496716ddc024db5a115633d2f92a0001c6858e2b0aee545cbbf3dd426a9447e8c5cf02760b02e3e85403509c36606a788
SSDEEP

6144:kC8iQu1xrRwMZ/4Cozbl+jeh3jDiFBIdZlJw7X+yk0R:ksQM7ZSbGY3jDiFBIdZluz+yki

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dc8935e876f96b03b3ca5b16010b5ef0_JaffaCakes118

Files

dc8935e876f96b03b3ca5b16010b5ef0_JaffaCakes118
.exe windows:5 windows x86 arch:x86

74f2fb4f804926af05d2bf0b553b58f4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msidsscp

_Dtest
_LInf
_Strxfrm
_Inf
_FSinh
_Denorm
_Nan
_Wcrtomb
_LCosh

ole32

CreateGenericComposite
OleTranslateAccelerator
CoCreateInstance
OleQueryLinkFromData
CoIsOle1Class
StgCreateDocfile
CoLockObjectExternal
ReleaseStgMedium
StgOpenStorage
StringFromGUID2
CoGetClassObject

kernel32

TerminateProcess
GlobalAlloc
lstrcpyA
GlobalUnlock
GetProcAddress
LoadLibraryA
InterlockedDecrement
GetACP
QueryPerformanceFrequency
LoadLibraryExA
SetStdHandle
GetCommandLineW
SetPriorityClass
SetEvent
HeapCreate
GetTimeFormatA
VirtualFree
GetProfileStringA
Sleep
HeapAlloc
DeleteCriticalSection
GetModuleFileNameW
IsDBCSLeadByteEx

ntdll

NtQueryInformationFile
NtCreateTimer
ZwProtectVirtualMemory
RtlCompareMemory
ZwSetEvent
RtlFillMemory
RtlAddAce
NtQuerySection

gdi32

CreateDIBPatternBrushPt
CreatePalette
EnumMetaFile
GetRgnBox
AnimatePalette
GetEnhMetaFileHeader
DeleteObject
GetObjectType
GetPaletteEntries
OffsetViewportOrgEx
SetTextColor
CreateBitmap
RectVisible
Rectangle
GetWinMetaFileBits
CreateFontIndirectA
IntersectClipRect
MoveToEx
Ellipse
DPtoLP
GetMetaFileBitsEx
ExtCreatePen
GetBitmapBits

advapi32

RegSetValueExA

user32

DefMDIChildProcA
UpdateWindow
GetUpdateRgn
IsWindowUnicode
EqualRect
GetWindowThreadProcessId
MessageBoxA
DrawFocusRect
GetDC
CreateCaret
ClipCursor
GetForegroundWindow
SystemParametersInfoA
DestroyMenu
DefWindowProcW
WinHelpA
IsZoomed
CheckDlgButton
DrawMenuBar
GetAsyncKeyState
CallWindowProcW
wsprintfA
SetCaretPos
TranslateMDISysAccel
EnumDisplaySettingsA
SetCursor
PeekMessageA
SendDlgItemMessageA

Sections

.text
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 183KB - Virtual size: 184KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

74f2fb4f804926af05d2bf0b553b58f4

Headers

DLL Characteristics

File Characteristics

Imports

msidsscp

ole32

kernel32

ntdll

gdi32

advapi32

user32

Sections

.text Size: 44KB - Virtual size: 44KB

.data Size: 17KB - Virtual size: 17KB

.rsrc Size: 183KB - Virtual size: 184KB

.text
Size: 44KB - Virtual size: 44KB

.data
Size: 17KB - Virtual size: 17KB

.rsrc
Size: 183KB - Virtual size: 184KB