f073f1545a42137ddd8ddf0a56a2c938_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f073f1545a42137ddd8ddf0a56a2c938_JaffaCakes118
Size

43KB
MD5

f073f1545a42137ddd8ddf0a56a2c938
SHA1

faa2a88299f513b3f4069feba45e76573e5d69f9
SHA256

440b534d4d8f262d8eb2c482f2fee8966e16541c7f4f81429171be80ecfa9120
SHA512

056e7d5b32d8f3536657477d76834d5a37f58f3e4c70dba501355ed7500327c1373b46af27dbe8714087a4077ace22ca739bb46c3a2e17d41a5467885681077e
SSDEEP

768:anARPMz+3Puz/Mw8OjA/S5ML7kYTs7hfiAh3zi7K7HBnWVJj9hKTrMf8:fPx3PuHmT7kYTkLRT+ph8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f073f1545a42137ddd8ddf0a56a2c938_JaffaCakes118

Files

f073f1545a42137ddd8ddf0a56a2c938_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8a51999807c611973a99790e4e883c51

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FileTimeToLocalFileTime
LeaveCriticalSection
FormatMessageW
OutputDebugStringA
GetTempPathW
RtlUnwind
FindResourceW
GetStdHandle
GetFileAttributesW
SetEvent
GetVolumeNameForVolumeMountPointW
ExitProcess
GetCurrentThreadId
GetLastError
GetFileSize
GetLocaleInfoW
EnterCriticalSection
GetVersionExW
VirtualAlloc
LoadLibraryA
DuplicateHandle
GetSystemTime
GetProcAddress
DeviceIoControl
LoadLibraryA
FreeEnvironmentStringsW
GetModuleHandleW
GlobalUnlock
CompareStringW
MapViewOfFileEx
LeaveCriticalSection
FormatMessageA
CreatePipe
GetCommandLineW
CreateThread
_lclose
GetModuleFileNameA
GetNumberFormatW
TerminateThread
InterlockedDecrement
GetModuleHandleA

msvcrt

strcpy
strncpy
memcpy
wcscmp
__wgetmainargs
exit
__winitenv
__p__fmode
fflush
towupper
wcslen
__initenv
toupper
_wtol

user32

RegisterClassExW
DrawMenuBar
ScreenToClient
SetWindowTextW
SetTimer
CharUpperW
GetClipboardData
IsRectEmpty
MapWindowPoints
PostMessageA
SystemParametersInfoW
GetThreadDesktop
DefWindowProcA
SetScrollPos
FillRect
LoadIconA
DrawIcon
EnableMenuItem
ModifyMenuW
CloseClipboard
RedrawWindow
IsWindowVisible
DrawTextW
LoadMenuW
LoadStringW
SetWindowPos
OffsetRect
GetDlgItemTextA
PtInRect
SendMessageA

gdi32

SelectPalette
PatBlt
GetStockObject
CreateCompatibleBitmap
SaveDC
DeleteObject
BitBlt
CreatePen
MoveToEx
SelectObject
CreateCompatibleDC
SetTextColor
CreatePalette
GetTextMetricsW
SetMapMode
GetObjectW

opengl32

glTexCoord4iv
glPixelTransferi
glMap1f
glVertex3fv
glGetBooleanv
glClearIndex
glRasterPos4dv

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nlp0
Size: 1024B - Virtual size: 661B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.nlp1
Size: 512B - Virtual size: 22B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.nlp2
Size: 1024B - Virtual size: 793B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nlp3
Size: 512B - Virtual size: 69B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8a51999807c611973a99790e4e883c51

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

gdi32

opengl32

Sections

.text Size: 4KB - Virtual size: 3KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 5KB - Virtual size: 4KB

.nlp0 Size: 1024B - Virtual size: 661B

.nlp1 Size: 512B - Virtual size: 22B

.nlp2 Size: 1024B - Virtual size: 793B

.nlp3 Size: 512B - Virtual size: 69B

.rsrc Size: 64KB - Virtual size: 63KB

.reloc Size: 512B - Virtual size: 64B

.text
Size: 4KB - Virtual size: 3KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 5KB - Virtual size: 4KB

.nlp0
Size: 1024B - Virtual size: 661B

.nlp1
Size: 512B - Virtual size: 22B

.nlp2
Size: 1024B - Virtual size: 793B

.nlp3
Size: 512B - Virtual size: 69B

.rsrc
Size: 64KB - Virtual size: 63KB

.reloc
Size: 512B - Virtual size: 64B