fdff4ed0acf0928a12a6a282c3fe5412_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

fdff4ed0acf0928a12a6a282c3fe5412_JaffaCakes118
Size

503KB
MD5

fdff4ed0acf0928a12a6a282c3fe5412
SHA1

82e1b9434961db4807348c1077fd0bbbab2079d2
SHA256

26531a27ea4a0049d4c46845968ecb0ad08d411e8ac845642b1e4089fbbf3bd2
SHA512

eb37a86f6d9ed1b447a2dee32159464c78e38cbc64700887c9fa39674829211744b9484d193d712baff74dc94ef42cbaea879e3ce691aa279faa92c245909b50
SSDEEP

3072:uSfsMLnYkHyb2Hz9aQkf7kXv9Dpva/X7CRRAiVuD:uSfPNH/HcQkTWpvAX7TiVQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fdff4ed0acf0928a12a6a282c3fe5412_JaffaCakes118

Files

fdff4ed0acf0928a12a6a282c3fe5412_JaffaCakes118
.exe windows:5 windows x86 arch:x86

fb0f47cc4a4ce1378ff1dae0c5257010

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFileAttributesA
GetProcAddress
LoadLibraryA
DeleteFileA
FindClose
FindFirstFileA
FindNextFileA
FreeLibrary
GetCurrentProcess
GetFileAttributesA
GetLastError
GetModuleFileNameA
lstrlenA
lstrcpyA
lstrcmpiA
lstrcmpA
lstrcatA
_lopen
_llseek
_lclose
GetModuleHandleA
RemoveDirectoryA
LocalAlloc
GlobalUnlock
GetWindowsDirectoryA
GetSystemDirectoryA
GetShortPathNameA
GetPrivateProfileStringA
GetPrivateProfileIntA

user32

VkKeyScanW
CharUpperW
GetKeyboardType
LoadCursorFromFileA
DialogBoxIndirectParamA
GetDC
GetWindowRect
MessageBeep
MsgWaitForMultipleObjects
SetDlgItemTextA
ShowWindow

gdi32

StretchDIBits
StretchBlt
SetViewportOrgEx
SetTextColor
SetStretchBltMode
SetRectRgn
SetDIBits
SetBkMode
SetBkColor
SelectPalette
SelectObject
SelectClipRgn
SaveDC
RestoreDC
ResizePalette
RectVisible
RealizePalette
PtInRegion
OffsetRgn
MaskBlt
IntersectClipRect
GetWindowOrgEx
GetViewportOrgEx
GetTextMetricsW
GetTextExtentPoint32W
GetStockObject
GetPaletteEntries
GetObjectW
GetObjectType
GetNearestPaletteIndex
GetNearestColor
GetDeviceCaps
GetDIBits
GetDIBColorTable
GetCurrentObject
GetClipRgn
GetClipBox
GdiFlush
FillPath
GetROP2
GetTextCharacterExtra
BeginPath
BitBlt
CombineRgn
CreateBitmap
CreateCompatibleBitmap
CreateCompatibleDC
CreateDIBSection
CreateHalftonePalette
CreatePalette
CreatePatternBrush
CreateRectRgn
CreateRectRgnIndirect
CreateRoundRectRgn
CreateSolidBrush
DeleteDC
DeleteObject
EndPath
ExcludeClipRect
ExtTextOutW

advapi32

RegOpenKeyW

Sections

.text
Size: 202KB - Virtual size: 201KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 210KB - Virtual size: 209KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fb0f47cc4a4ce1378ff1dae0c5257010

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 202KB - Virtual size: 201KB

.rdata Size: 210KB - Virtual size: 209KB

.data Size: 88KB - Virtual size: 88KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 202KB - Virtual size: 201KB

.rdata
Size: 210KB - Virtual size: 209KB

.data
Size: 88KB - Virtual size: 88KB

.rsrc
Size: 1KB - Virtual size: 1KB