dcadf710d698aaa0e683bbc9382d67d2_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

dcadf710d698aaa0e683bbc9382d67d2_JaffaCakes118
Size

178KB
MD5

dcadf710d698aaa0e683bbc9382d67d2
SHA1

ea62fec417853d254672061aa531b39a9e0b31ab
SHA256

ce62f00608aaba2d8c0fe870abf72a59cdb5b5367be651cc005b7b089a707602
SHA512

cd2853176ad8233e2b063d4728ba1fbba85cf4a42fef47a4784c39d4459f3775778ebcf4ef40fcff036bed9ad0a1f7c68de5cd3922d899d974bad4fc95f3dc16
SSDEEP

3072:VS3cHG+hpLm1dLb5r88+jc3JhpVv+xKe6byA8MwUMRxlZUTtUB5oncqJW8/rBWvE:V6cHNhpcdBrP+w3JTVvqKe6WAgEtUzok

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dcadf710d698aaa0e683bbc9382d67d2_JaffaCakes118

Files

dcadf710d698aaa0e683bbc9382d67d2_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f807d6d8fa9cabe818dcdfa757d9d48c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Dohasaji\Ruvadajiji\Dapelociqi.pdb

Imports

kernel32

CloseHandle
DeleteFileW
GetTickCount
CopyFileW
GetWindowsDirectoryW
CreateFileW
MoveFileExA
GetDateFormatA
FreeResource
SizeofResource
LoadResource
LoadLibraryW
ExitProcess
GetCurrentProcessId
GetFileTime
GetModuleFileNameW
MultiByteToWideChar
GetVolumeInformationA
QueryPerformanceCounter
GetSystemTime
GetLocalTime
CreateFileA
GetModuleHandleW
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
CreateProcessW
Sleep
FreeLibrary
LoadLibraryA
GetProcAddress
GetModuleHandleA
GetCurrentThreadId
GetCommandLineA
GetProfileStringW
VirtualProtect
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetSystemTimeAsFileTime
HeapSize
VirtualQuery
InterlockedExchange
RtlUnwind
IsBadWritePtr
GetSystemInfo
HeapReAlloc
VirtualAlloc
HeapAlloc
GetCPInfo
GetOEMCP
GetACP
HeapFree
VirtualFree
GetStartupInfoA
GetVersionExA
TerminateProcess
GetCurrentProcess
WriteFile
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetLastError
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapDestroy
HeapCreate

user32

IsDialogMessageW
GetIconInfo
CheckDlgButton
CallNextHookEx
SendMessageTimeoutA
SetWindowTextA
MapWindowPoints
DestroyWindow
SendMessageA
ValidateRect
DestroyMenu
BeginPaint
EmptyClipboard
InvalidateRect
SetDlgItemInt
ClientToScreen
FrameRect
ShowScrollBar
GetDlgItemInt
PostMessageW

Sections

.text
Size: 94KB - Virtual size: 93KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 58KB - Virtual size: 302KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f807d6d8fa9cabe818dcdfa757d9d48c

Headers

File Characteristics

PDB Paths

Imports

kernel32

user32

Sections

.text Size: 94KB - Virtual size: 93KB

.rdata Size: 23KB - Virtual size: 23KB

.data Size: 58KB - Virtual size: 302KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 94KB - Virtual size: 93KB

.rdata
Size: 23KB - Virtual size: 23KB

.data
Size: 58KB - Virtual size: 302KB

.rsrc
Size: 1KB - Virtual size: 1KB