df3d0e694754550c53f9adef2efd1927_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

df3d0e694754550c53f9adef2efd1927_JaffaCakes118
Size

586KB
MD5

df3d0e694754550c53f9adef2efd1927
SHA1

1059245049a6b2c3277837c8acfbb6910c5eb5a9
SHA256

71f02e0186d9cddf6e9f36624e0feea96ee0d928e0826186c099b03c364d5b5a
SHA512

36c59b4977f833d6173caf723b59f6a0673a23b74fcb0c206f566f400396eb206c98b7c8e316c00de9bbdd5ff695b2499347dee62f028f0bbb13a342679101e0
SSDEEP

12288:j5nLpSmyv9Q0YdO3ui89/Rm98SGSav7HLQbKYWiwaBFPPv6et0l:j5tSmWK06O3989N5tHLbhxaDpy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
df3d0e694754550c53f9adef2efd1927_JaffaCakes118

Files

df3d0e694754550c53f9adef2efd1927_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9762c93718bc148afec7bb92e6e9258f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CreateFontIndirectA
GetTextExtentPointA
GetBrushOrgEx
FillPath
PaintRgn
GdiComment

version

VerQueryValueA
VerFindFileA
GetFileVersionInfoSizeA

kernel32

GetCommConfig
GetStringTypeExW
PulseEvent
ExitProcess
GlobalAddAtomA
EndUpdateResourceA
CreateWaitableTimerA
SetCommTimeouts
FindFirstFileW
SizeofResource
DosDateTimeToFileTime
ExitThread
GetFileInformationByHandle
LocalFileTimeToFileTime
MultiByteToWideChar
ReadFile
GetProcessTimes
CopyFileExW
CreateDirectoryExA
VirtualUnlock
GetCurrentDirectoryW
GetSystemInfo
GetSystemTimeAdjustment
SetConsoleTitleA
GetShortPathNameA
SetSystemTime
SetCurrentDirectoryA
VirtualQueryEx
ReadConsoleInputW
CreateNamedPipeW
GetFileAttributesA
CreatePipe
CompareStringW
GetProcessHeap
GlobalDeleteAtom
FindResourceExW
GlobalFlags
GlobalReAlloc
SetMailslotInfo
SetErrorMode
SetConsoleWindowInfo
DuplicateHandle
VirtualFree

ws2_32

sendto
getservbyname
WSAGetLastError
WSAConnect
WSARecvFrom
WSALookupServiceBeginA
WSAInstallServiceClassW

comdlg32

ChooseColorW
CommDlgExtendedError

shell32

DragQueryPoint
SHGetPathFromIDListA

user32

CloseClipboard
GetMenuState
SetClassLongW
SetWindowPos
ToAscii
GetWindowDC
SetClipboardData
OpenIcon
TabbedTextOutW
LoadAcceleratorsA
GetTabbedTextExtentW
CreateDesktopW
TabbedTextOutA
SetForegroundWindow
GetMessagePos
IsCharAlphaNumericW
WaitForInputIdle
CharUpperW
SendDlgItemMessageA
GetGuiResources
SetCursorPos
CheckMenuItem
GetPropW
AttachThreadInput
GetCursor
ClientToScreen
IsDlgButtonChecked
CountClipboardFormats
CreateMDIWindowW
CreateMenu

Sections

.text
Size: 7KB - Virtual size: 255KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 257KB - Virtual size: 256KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9762c93718bc148afec7bb92e6e9258f

Headers

File Characteristics

Imports

gdi32

version

kernel32

ws2_32

comdlg32

shell32

user32

Sections

.text Size: 7KB - Virtual size: 255KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 257KB - Virtual size: 256KB

.rsrc Size: 16KB - Virtual size: 16KB

.text
Size: 7KB - Virtual size: 255KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 257KB - Virtual size: 256KB

.rsrc
Size: 16KB - Virtual size: 16KB