ea88572abb0c7f9a1155e609f54ac7ea_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

ea88572abb0c7f9a1155e609f54ac7ea_JaffaCakes118
Size

145KB
MD5

ea88572abb0c7f9a1155e609f54ac7ea
SHA1

33d92e9680d05210136a2e852ff6a3cf17f8f013
SHA256

9583832332b20dc45f9aea4d792ca0c15ef1b517837b34fe3047bf4a9d90ac16
SHA512

0ddf26724bcee8a2fc3754b00d81d2c4419c8c7f021f492bc30a5633c793797a6b7779c1a963be5cba42e61a64467e9ac10132d7ef6e3c98f2c21e34adcc1619
SSDEEP

1536:P2mC2ha0IYGqxFCsLd/mOfK4etSiU9Z7LbmaaJG5fNlz8r/K/ugKXCCG+:hJa0Imbp8S1916aTNdQ/EuN9J

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ea88572abb0c7f9a1155e609f54ac7ea_JaffaCakes118

Files

ea88572abb0c7f9a1155e609f54ac7ea_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1f6b51d78e2d6dd61b2bfc343fdab509

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
GetCurrentProcess
LoadLibraryW
GetCurrentProcessId
VirtualAlloc
InterlockedCompareExchange
HeapFree
CreateFileW
InitializeCriticalSection
LocalAlloc
VirtualProtect
GetCurrentThreadId
LocalFree
Sleep
lstrlenA
LoadLibraryA
GetModuleHandleW
LeaveCriticalSection
HeapAlloc
GetLastError
Sleep
LoadLibraryA
lstrcmpiW
LocalAlloc
Sleep
GetModuleHandleW
LocalFree
VirtualProtect
LocalAlloc
SetLastError
GetTickCount
GetSystemTimeAsFileTime
InitializeCriticalSection
InterlockedExchange
LocalFree
QueryPerformanceCounter
VirtualAlloc
GetCurrentProcessId
DeleteCriticalSection
QueryPerformanceCounter
FreeLibrary
GetTickCount
HeapFree
CreateThread
GetModuleFileNameA
InterlockedDecrement
LoadLibraryA
VirtualAlloc
GetLastError
GetCurrentProcess
GetCurrentThreadId
CloseHandle
UnhandledExceptionFilter
QueryPerformanceCounter
LocalAlloc
FreeLibrary
GetCurrentProcessId
GetProcessHeap
LocalAlloc
lstrlenA
GetModuleFileNameA
UnhandledExceptionFilter
GetTickCount
GetModuleFileNameA

gdi32

CreateDIBitmap
SetBkColor
SetBkMode
CreateFontA
CreateBitmapIndirect
GetPixel
GetBkColor
CreateBitmap
CreateDIBSection
CreateCompatibleDC
CombineRgn
SetWindowOrgEx
StretchBlt
Rectangle
CombineRgn
CreateCompatibleDC
CreateBitmapIndirect
CreateBitmapIndirect
CreateBitmap
CreatePen
StretchBlt
SetBrushOrgEx
Ellipse
CreateBitmap
GetBkMode
Polygon
SelectObject
Rectangle
SetBkMode
CombineRgn
CreateBitmap
CreateRectRgn
CreateRectRgn
CreateDIBitmap
LineTo
SetWindowExtEx
CreateFontA
SetWindowExtEx
CreateBitmapIndirect
LineTo
Ellipse
BitBlt
GetBkMode
SetBkColor
GetBkMode
SetPixel
Rectangle
CreateBitmap
GetCurrentObject
CreateCompatibleDC
CreatePen
SetBrushOrgEx
GetWindowOrgEx
Polygon
BitBlt
CreateCompatibleDC
SelectObject
CreateRectRgn
CreateBitmapIndirect
SetBkMode
LineTo
Ellipse
GetWindowExtEx

user32

IsDlgButtonChecked
SendMessageW
GetDC
SetTimer
LoadStringW
GetWindowLongW
PostQuitMessage
GetSysColor
KillTimer
CreateWindowExW
DialogBoxParamW
GetDlgItem
CreateWindowExW
SetDlgItemTextW
SetForegroundWindow
BeginPaint
GetSysColor
wsprintfA
GetSystemMetrics
LoadIconW
SetTimer
GetSysColor
EndPaint
IsWindow
PostQuitMessage
DestroyWindow
LoadStringW
SetCursor
wsprintfA
IsDlgButtonChecked
GetSystemMetrics
EndDialog
SendMessageW
PeekMessageW
SetTimer
InvalidateRect
SetFocus
InvalidateRect
SendMessageW
SetWindowPos
GetWindowRect
KillTimer
SendDlgItemMessageW
SetForegroundWindow
CreateWindowExW
SendDlgItemMessageW
SendMessageW
DefWindowProcW
GetClientRect
SetWindowLongW
BeginPaint
GetFocus
wsprintfA
ShowWindow
GetWindowRect
EnableWindow
ReleaseDC
GetDlgItem
SetDlgItemTextW
LoadCursorW
CreateWindowExW
DispatchMessageW
GetDC
GetSysColor
ShowWindow
EndPaint
DefWindowProcW
SetWindowTextW

Sections

.text
Size: 109KB - Virtual size: 404KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

1f6b51d78e2d6dd61b2bfc343fdab509

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

gdi32

user32

Sections

.text Size: 109KB - Virtual size: 404KB

.data Size: 512B - Virtual size: 4KB

.rdata Size: 5KB - Virtual size: 8KB

.rsrc Size: 12KB - Virtual size: 12KB

.text
Size: 109KB - Virtual size: 404KB

.data
Size: 512B - Virtual size: 4KB

.rdata
Size: 5KB - Virtual size: 8KB

.rsrc
Size: 12KB - Virtual size: 12KB