df62bf220aff14b130f992586822df53_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

df62bf220aff14b130f992586822df53_JaffaCakes118
Size

507KB
MD5

df62bf220aff14b130f992586822df53
SHA1

289d9c993ea7288a65483a45b488a556845bc096
SHA256

181d16e1caad6ca01cc23efe2f5c4aebb7440a078aa3ad7e726fb2c70932d01c
SHA512

c90c784cd9a6e943e94f51ef1cac4688b96ac101fe328776831f93ebb301f478d21503bdedaa5ea708b095381f86ff9a0ddbae64b86a8a3cc02a93038bea6999
SSDEEP

12288:KMW0rTUY1ZflCWm3HYRwRHeM07qF1Nt4slr3nsIrYsIqM3:trAY1ZflpoYRwR+q/Jlr8Sn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
df62bf220aff14b130f992586822df53_JaffaCakes118

Files

df62bf220aff14b130f992586822df53_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d5e9506a5c5df94f0afd4e65c307fc94

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
RtlUnwind
_llseek
GetLastError
HeapCreate
TerminateProcess
LocalSize
GetPrivateProfileStringW
GetSystemTimeAsFileTime
GetBinaryTypeW
IsDBCSLeadByte
FormatMessageW
GetQueuedCompletionStatus
FileTimeToLocalFileTime
GetCPInfo
CompareFileTime
GetLongPathNameW
lstrcmpiW
ExpandEnvironmentStringsW
LoadLibraryExA
GetStartupInfoW
LoadLibraryW
HeapSize
LoadLibraryExW
FindClose
LocalUnlock
GetBinaryTypeA
ActivateActCtx
CompareFileTime
ResumeThread
HeapSize
AssignProcessToJobObject
GetCurrentDirectoryA
MapViewOfFile
GetProfileIntA
GetComputerNameW
LeaveCriticalSection
GlobalAlloc
OpenProcess
_lwrite
_lopen
LCMapStringW
_hread
TerminateThread
VirtualProtect
FindFirstFileA
IsBadWritePtr
GetPrivateProfileStringA
lstrcatA
SearchPathW
SearchPathW
UnregisterWait
ActivateActCtx
GetProcessTimes
lstrcatW
TerminateThread
FreeEnvironmentStringsW
CreateDirectoryA
GetFileAttributesW
GetBinaryTypeW
GetStdHandle
LCMapStringW
OutputDebugStringW
GetTickCount
VirtualProtect
GetProfileStringA
GetSystemDefaultLangID
OpenFile
GetSystemDirectoryW
GetProcessHeap
MulDiv
GlobalReAlloc
GetModuleFileNameA
ExitProcess
MoveFileA
LeaveCriticalSection
GetProfileStringA
GetSystemDirectoryW

user32

SetCursorPos
LoadBitmapA
LoadIconA
FillRect
ChangeDisplaySettingsW
InternalGetWindowText
TileChildWindows
PtInRect
PostMessageW
GetMenuState
DdeUninitialize
InflateRect
CharUpperBuffW
SendMessageA
GetClassInfoExW
SetProcessDefaultLayout
RegisterWindowMessageW
GetAncestor
SetWindowPlacement
EnableWindow
BeginPaint
GetScrollInfo
AdjustWindowRectEx
ChangeDisplaySettingsW
CallWindowProcA
IsWindowVisible
GetScrollPos
GetDlgCtrlID
LoadCursorW
SetWindowLongW
EndPaint
CheckRadioButton
CloseDesktop
DdePostAdvise
PostMessageW
DdeCmpStringHandles
GetNextDlgTabItem
MonitorFromWindow
GetSysColorBrush
DdeGetLastError
GetFocus
EnumWindows
DialogBoxParamW
ShowScrollBar
DdeCreateDataHandle
LoadAcceleratorsW
GetScrollInfo
DestroyWindow
GetDlgItemTextW
IsDlgButtonChecked
GetWindowDC
EndTask
TileWindows
SetFocus
SetWindowRgn
UpdateWindow
EndDialog
RemoveMenu
GetWindowLongA
DrawCaption
GetWindowDC
ReleaseCapture
RegisterClassA
InvalidateRgn
GetForegroundWindow
GetWindowTextW
FillRect
GetWindowThreadProcessId
CharLowerA
RedrawWindow
EnumThreadWindows
PtInRect
SetPropW
WinHelpW
MoveWindow
PrintWindow

gdi32

GetTextMetricsW
SetROP2
CreateDIBitmap
BitBlt
CreateCompatibleBitmap
CreateCompatibleDC
SetTextAlign
SetViewportOrgEx
SetStretchBltMode
GetTextMetricsA
LineTo
GetTextFaceW
EndPage
SelectObject
GetNearestColor
Rectangle
SetTextColor
GetTextAlign
Rectangle
SetRectRgn
SetViewportOrgEx
SetAbortProc
GetStockObject
CreateFontIndirectA
SetTextAlign
SelectClipRgn
SetAbortProc
IntersectClipRect
SaveDC
CreateBitmap
GetClipBox
SetDIBits
SetViewportExtEx
CreateDiscardableBitmap
BitBlt
SaveDC
StartDocA
SetMapMode
IntersectClipRect
SetStretchBltMode
GetTextCharset
GetStockObject
GetTextExtentPointA
SelectObject
PatBlt
GetTextExtentPoint32W
CreateICA
GetDeviceCaps
GetBkColor
GetTextFaceW
CreateBitmap
GetBkColor
GetTextColor
GetTextExtentPoint32W
ExcludeClipRect
LineTo
RealizePalette
CombineRgn
TranslateCharsetInfo
GetTextAlign
SetPixel
GetDeviceCaps
GetClipBox
SetDIBits
RestoreDC
SelectPalette
CreatePen
Rectangle
SetMapMode
InvertRgn
GetTextCharset
StartPage
GetNearestColor
SetRectRgn
EndDoc
ExtTextOutA

Sections

.text
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 492KB - Virtual size: 964KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d5e9506a5c5df94f0afd4e65c307fc94

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 7KB - Virtual size: 8KB

.data Size: 492KB - Virtual size: 964KB

.rdata Size: 6KB - Virtual size: 8KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 7KB - Virtual size: 8KB

.data
Size: 492KB - Virtual size: 964KB

.rdata
Size: 6KB - Virtual size: 8KB

.rsrc
Size: 1024B - Virtual size: 4KB