fff539917c2482a684bfe89956f4c9fd_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

fff539917c2482a684bfe89956f4c9fd_JaffaCakes118
Size

361KB
MD5

fff539917c2482a684bfe89956f4c9fd
SHA1

f98b36a1f5695ce9c2c9e99a58831efb632e560f
SHA256

807fe6566c08fcadc1067fe97acd33f86042f68795b4390280ef582bc8c6eda1
SHA512

74c3c8043836f962fef9837d67221e178a365c383c58a61b4c9eeaa4ea2b77d829b4854f911c2962c720bc670afaa6e55910222b0d601b6e45ffa785ff71ee49
SSDEEP

3072:v7q/qlxTxZNEgkJ7uScED5PDkcVI9GaiaWbRb+d547AGzBRhBcCFw:i7owwGaihbRboKBi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fff539917c2482a684bfe89956f4c9fd_JaffaCakes118

Files

fff539917c2482a684bfe89956f4c9fd_JaffaCakes118
.exe windows:5 windows x86 arch:x86

c27c8751f7bab9199467280fa5053945

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_SYSTEM

PDB Paths

rej42y4her\\hjert\\wtjerhreh.pdb

Imports

ntdll

RtlInitializeSListHead

lz32

LZSeek
LZInit

msvfw32

DrawDibChangePalette

rasapi32

RasFreeEapUserIdentityW

user32

CreateDialogParamW
SetScrollPos
DestroyWindow
GetMessageW
ReleaseDC
UpdateWindow
GetSystemMetrics
EnableMenuItem
EnableWindow
DispatchMessageW
GetWindowTextW
GetKeyboardLayout
EndDialog
LoadImageW
CloseClipboard
LoadIconW
SetWindowTextW
ScreenToClient
IsIconic
MessageBeep
GetForegroundWindow
GetCursorPos
CheckMenuItem
GetDlgItemTextW
LoadStringW
SetCursor
GetFocus
RegisterClassExW
InvalidateRect
SetFocus
RegisterWindowMessageW
ShowWindow
IsDialogMessageW
GetMenuState
GetDC
SetWinEventHook
PostMessageW
GetDlgCtrlID
TranslateMessage
CallWindowProcA
SetForegroundWindow
LoadAcceleratorsW
CreateWindowExW
MoveWindow
SendDlgItemMessageW
GetWindowPlacement
FindWindowW
SetWindowLongW
CharNextW
DialogBoxParamW
PeekMessageW
DrawTextExW
ShowOwnedPopups
GetUpdatedClipboardFormats
ShutdownBlockReasonCreate
CreateIconFromResource
IsClipboardFormatAvailable
GetDlgItem
DefWindowProcW
WinHelpW
SetActiveWindow
GetWindowTextLengthW
MessageBoxW
ChildWindowFromPoint
GetAncestor
TranslateAcceleratorW
CharUpperW
GetSubMenu
GetParent
GetClientRect
UnhookWinEvent
SendMessageW
GetWindowLongW
SetDlgItemTextW
LoadCursorW
SetWindowPlacement
PostQuitMessage
OpenClipboard
GetSystemMenu

winscard

SCardListReadersW

gdi32

ExtSelectClipRgn
CopyMetaFileW

advapi32

RegFlushKey
QueryUsersOnEncryptedFile
SetThreadToken

ole32

HWND_UserSize
CoTaskMemAlloc
HGLOBAL_UserMarshal

kernel32

FormatMessageW
GetFileSizeEx
GetCPInfo
GetModuleHandleW
FindFirstFileNameW
lstrcatA
GetProcessIdOfThread
UnhandledExceptionFilter
GetLogicalDrives
GetConsoleMode

setupapi

CM_Set_DevNode_Registry_PropertyW
SetupInitDefaultQueueCallback

wininet

InternetSetStatusCallbackW

netapi32

NetServerTransportAddEx

crypt32

CryptVerifyDetachedMessageSignature

Sections

.text
Size: 109KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.YEs.
Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.rdata0
Size: 241KB - Virtual size: 240KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c27c8751f7bab9199467280fa5053945

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

ntdll

lz32

msvfw32

rasapi32

user32

winscard

gdi32

advapi32

ole32

kernel32

setupapi

wininet

netapi32

crypt32

Sections

.text Size: 109KB - Virtual size: 108KB

.YEs. Size: 5KB - Virtual size: 12KB

.data Size: 4KB - Virtual size: 3KB

.rdata0 Size: 241KB - Virtual size: 240KB

.rsrc Size: 1024B - Virtual size: 1000B

.text
Size: 109KB - Virtual size: 108KB

.YEs.
Size: 5KB - Virtual size: 12KB

.data
Size: 4KB - Virtual size: 3KB

.rdata0
Size: 241KB - Virtual size: 240KB

.rsrc
Size: 1024B - Virtual size: 1000B