e16d51f6c2814e37091257c4bb27ac32_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

e16d51f6c2814e37091257c4bb27ac32_JaffaCakes118
Size

464KB
MD5

e16d51f6c2814e37091257c4bb27ac32
SHA1

3c120c2c949d7f89bdd48b687bee02ce862066f5
SHA256

9f013dcfb838b5d3175eabcf715577fec25685d0e62b6867e142ef455bd3823f
SHA512

e720027ed063df5461b0ca025cad97efaa73b6b985420b1e693c4461b15084fb63aadda4bdab2000f83254b262e2aa6bdd032ba6d31e10bf2945eb09421feda8
SSDEEP

6144:jv9C/yNR8qChqzXau3l7rqyUtYutStdaJh8opa1Ap6pNTcr8ppFg5PChCjSQlLS4:jvPcbu13qyUtnOda8okyoNvfg5PEUV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e16d51f6c2814e37091257c4bb27ac32_JaffaCakes118

Files

e16d51f6c2814e37091257c4bb27ac32_JaffaCakes118
.exe windows:4 windows x86 arch:x86

979b268e6d72a5d6056918a905fcfaa3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

UnhookWindowsHookEx
TranslateMessage
SystemParametersInfoA
ShowWindow
SetWindowRgn
SetWindowsHookExA
SetWindowTextA
SetWindowPos
SetWindowLongA
SendMessageTimeoutA
SendMessageA
ReleaseDC
RegisterClassExA
RegisterClassA
RedrawWindow
PostMessageA
PeekMessageA
OffsetRect
OemToCharBuffA
MoveWindow
MessageBoxA
LoadStringA
LoadImageA
LoadIconA
IsWindowVisible
GetWindowRect
GetSystemMetrics
GetParent
GetLastActivePopup
GetDlgItem
GetDC
ExitWindowsEx
EnumWindows
EndPaint
DispatchMessageA
DestroyWindow
DestroyIcon
DefWindowProcA
CreateWindowExA
CreateDialogParamA
CallNextHookEx
BeginPaint
CharUpperBuffA
CharToOemBuffA
CharUpperW
GetWindowLongW
wsprintfW
wsprintfA
GetWindowTextW
DefWindowProcW
CallWindowProcW
GetWindowDC
DrawIconEx
MessageBeep
DialogBoxIndirectParamW
GetWindow
GetClientRect
ClientToScreen
GetWindowTextLengthW
DrawTextW
ScreenToClient
LoadIconW
LoadImageW
SetWindowLongW
SetDlgItemTextW
SystemParametersInfoW
SetFocus
EndDialog
SetWindowTextW
UpdateWindow
GetKeyboardType
EnumClipboardFormats

gdi32

GetKerningPairsW
FlattenPath
SetViewportOrgEx
SetPixelFormat
SetLayout
AbortDoc
CombineRgn

kernel32

HeapSize
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
LoadLibraryA
RtlUnwind
InitializeCriticalSectionAndSpinCount
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
InterlockedDecrement
GetCurrentThreadId
SetLastError
InterlockedIncrement
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetFileType
SetHandleCount
GetEnvironmentStringsW
GetLastError
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
GetModuleFileNameA
GetStdHandle
WriteFile
ExitProcess
GetProcAddress
Sleep
GetModuleHandleW
HeapCreate
HeapReAlloc
VirtualAlloc
VirtualFree
HeapFree
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetStartupInfoA
HeapAlloc
GetSystemDirectoryA
GetCurrentProcess
GetCommTimeouts
GetCommandLineA
GetLocaleInfoA
LCMapStringA
MultiByteToWideChar
LCMapStringW
GetStringTypeA
GetStringTypeW
FreeEnvironmentStringsA

Sections

.text
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 154KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.BSS
Size: 376KB - Virtual size: 374KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

979b268e6d72a5d6056918a905fcfaa3

Headers

File Characteristics

Imports

user32

gdi32

kernel32

Sections

.text Size: 60KB - Virtual size: 59KB

.rdata Size: 16KB - Virtual size: 15KB

.data Size: 4KB - Virtual size: 154KB

.BSS Size: 376KB - Virtual size: 374KB

.rsrc Size: 4KB - Virtual size: 1KB

.text
Size: 60KB - Virtual size: 59KB

.rdata
Size: 16KB - Virtual size: 15KB

.data
Size: 4KB - Virtual size: 154KB

.BSS
Size: 376KB - Virtual size: 374KB

.rsrc
Size: 4KB - Virtual size: 1KB