fefd8f69821855ba4d099e3a260ae6fd_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

fefd8f69821855ba4d099e3a260ae6fd_JaffaCakes118
Size

124KB
MD5

fefd8f69821855ba4d099e3a260ae6fd
SHA1

357b1a6fb432c6f5e1ab5dc48bee749b561c3cc3
SHA256

40d04978d1fb83b5ed0da2edd4ff6df7afc04b1710d2ce90bb762eab491d646b
SHA512

1e100da39b31dff2f1cf72e48dc8e28c6727bdc9432d2f176f45b70f9f50fb01cb702910ade7962fd485ccaa1146e32e666d7ca05e6c7933d94e1f49ec53a997
SSDEEP

1536:VoG9TLu/2pnPYrN0I7KxgbhkIUCNvD321g8Nn4tpIhsg/4cl+WUb10BGrES7:VoG93VJG82aID321gQn4/KsOkVyGAA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fefd8f69821855ba4d099e3a260ae6fd_JaffaCakes118

Files

fefd8f69821855ba4d099e3a260ae6fd_JaffaCakes118
.exe windows:4 windows x86 arch:x86

18b6264e9ce7a68e148adfabe19c9331

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_WDM_DRIVER

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteAtom
_lclose
ClearCommError
GetProcAddress
LoadLibraryW
ExitThread
GetModuleHandleA
GetLastError
HeapAlloc
VirtualFree
lstrlenA
VirtualProtect
WriteConsoleW
GetStringTypeW
CloseConsoleHandle
FreeLibrary
VirtualAlloc
OutputDebugStringA
GetWindowsDirectoryA
FindFirstFileW
GetCurrentProcess

msvcrt

_ftol
_snwprintf
wcscpy
__winitenv
_wcmdln
swscanf
_except_handler3
__p__fmode
_iob
wcscmp
__initenv
_exit
memcpy
_cexit
strncpy
wcschr
free
_purecall
wcslen
__p__commode
_controlfp
islower
__CxxFrameHandler
swprintf
_adjust_fdiv
_c_exit
_wtol
malloc
wcscat
_vsnprintf
__dllonexit

user32

SendMessageA
LoadImageW
CopyRect
ReleaseDC
GetCursorPos
CheckDlgButton
GetProcessWindowStation
RegisterClassA
BeginPaint
ScreenToClient
ReleaseCapture
SetCapture
UnregisterClassW
SendMessageW
LoadMenuW
SetScrollPos
LoadCursorA
DialogBoxParamA
DestroyWindow
wsprintfW
IsWindow
GetParent
DispatchMessageW
MapWindowPoints
LoadCursorW
GetMenuItemCount
ClientToScreen

shell32

SHGetPathFromIDListW
SHGetFileInfoW
ShellExecuteW
SHGetFolderPathW

opengl32

GlmfBeginGlsBlock
glColor3ui
glTexCoord2dv
wglShareLists
glTexCoord2d
glStencilMask
glColor4i
glColor4d
glColor4f
glFogfv

Exports

Exports

WhjqsthLcanrMfmzdMoz
QlKwmkaqSfyfkFfhguhAu
Wjnafv

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 129B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.crt
Size: 512B - Virtual size: 17B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 71KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 94B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

18b6264e9ce7a68e148adfabe19c9331

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

shell32

opengl32

Exports

Exports

Sections

.text Size: 16KB - Virtual size: 15KB

.rdata Size: 2KB - Virtual size: 2KB

.edata Size: 512B - Virtual size: 129B

.crt Size: 512B - Virtual size: 17B

.data Size: 71KB - Virtual size: 70KB

.rsrc Size: 32KB - Virtual size: 32KB

.reloc Size: 512B - Virtual size: 94B

.text
Size: 16KB - Virtual size: 15KB

.rdata
Size: 2KB - Virtual size: 2KB

.edata
Size: 512B - Virtual size: 129B

.crt
Size: 512B - Virtual size: 17B

.data
Size: 71KB - Virtual size: 70KB

.rsrc
Size: 32KB - Virtual size: 32KB

.reloc
Size: 512B - Virtual size: 94B