fce57e4bd9510a879e1e28d176c7aa42_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

fce57e4bd9510a879e1e28d176c7aa42_JaffaCakes118
Size

119KB
MD5

fce57e4bd9510a879e1e28d176c7aa42
SHA1

06fab463b0721a2f8f0129f4ce8bcea2489d764e
SHA256

c4c72203a847cd0bffdb4db756c0e8002bdbd837ca020e9b1f9e321881ac6ef6
SHA512

cee90bfe80d7b8044ae8f84ddb2e915c93359841742b13365e606d05f3816ce7783312901bb435ac4a442a9eaebb81ccd266231a066a0dd7973e4ae3a7dea227
SSDEEP

3072:H7BoTui1UU9KNGooatnYUmE5oqrr6JvhU:HtoTuiDANpoatGE96thU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fce57e4bd9510a879e1e28d176c7aa42_JaffaCakes118

Files

fce57e4bd9510a879e1e28d176c7aa42_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c66b775f9ac4f815694c1c3bf4f52d2f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
ExitProcess
GetModuleHandleW
WriteConsoleW
GetModuleHandleA
GetProcAddress
GetCurrentThreadId
SetUnhandledExceptionFilter
CloseHandle
GlobalAlloc
HeapFree
CreateDirectoryA
FreeEnvironmentStringsW
VirtualProtect
SetFilePointer
GetWindowsDirectoryW
GlobalReAlloc
GetSystemDirectoryA
VirtualAlloc
QueryPerformanceCounter
lstrcatA
GetTimeFormatW
GetFileType
CreateProcessA
FindNextFileW
LoadLibraryW
GetSystemInfo
OutputDebugStringA
IsBadWritePtr
CreatePipe
GetLastError
GetCurrentThread
LoadLibraryA
TerminateThread
CreateDirectoryW

msvcrt

memcpy
wcsncpy
atoi
_iob
strcpy
towupper
sprintf
isalnum
strncpy
_wcsnicmp
wcsncmp
_vsnprintf
__p__commode
__wgetmainargs
memset
_wtoi
_acmdln

user32

RegisterDeviceNotificationW
DispatchMessageA
MsgWaitForMultipleObjects
GetWindowPlacement
SetScrollPos
ShowWindow
RealChildWindowFromPoint
DialogBoxParamW
OpenClipboard
LoadStringA
LoadCursorW
RemoveMenu
DeleteMenu
SystemParametersInfoW
InvalidateRect
PostQuitMessage
GetAsyncKeyState
LoadAcceleratorsW
GetKeyState
LoadStringW
SetCapture
ReleaseDC
GetMenuItemCount
GetDlgItem

gdi32

SetTextColor
SelectPalette
CreatePen
SetMapMode
PatBlt
CreateSolidBrush
CreateFontIndirectA
SetPixel
BitBlt
SetBkColor
DeleteDC
GetDeviceCaps
SelectObject
SaveDC
CreateCompatibleDC

opengl32

glColor3us
glColor4i
glTexCoord3fv
glColor3f
glTexCoord2d
glCopyTexSubImage1D
glNormal3f
glClearStencil
glInitNames
glGetTexImage
wglCopyContext
glRectdv
glGetPixelMapusv

Exports

Exports

DaMfskrdMsjupj
OhIuvzDvmrbum
OeeKpsxmhnAzrdpq
FtOarivmhOkrxbOa

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

idea0
Size: 512B - Virtual size: 277B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 89B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 105KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 56B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c66b775f9ac4f815694c1c3bf4f52d2f

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

gdi32

opengl32

Exports

Exports

Sections

.text Size: 9KB - Virtual size: 8KB

.rdata Size: 2KB - Virtual size: 2KB

idea0 Size: 512B - Virtual size: 277B

.data Size: 512B - Virtual size: 89B

.rsrc Size: 105KB - Virtual size: 104KB

.reloc Size: 512B - Virtual size: 56B

.text
Size: 9KB - Virtual size: 8KB

.rdata
Size: 2KB - Virtual size: 2KB

idea0
Size: 512B - Virtual size: 277B

.data
Size: 512B - Virtual size: 89B

.rsrc
Size: 105KB - Virtual size: 104KB

.reloc
Size: 512B - Virtual size: 56B