02e1ed70586b3b78ae3ea693cfb7cf81_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

02e1ed70586b3b78ae3ea693cfb7cf81_JaffaCakes118
Size

186KB
MD5

02e1ed70586b3b78ae3ea693cfb7cf81
SHA1

c6c616fa72bde5966221ed019229c8d940b5e775
SHA256

d2c98beb3871d9b2712f57658a83f02672b8f17073c16ba42f357fd3018fb356
SHA512

199e940831c17071beb3ddbf4a36a13d51a3843c07cd4ca5a0453c24a20b3bd61c47f33a9f07397757c3b9b820d83ac74d45c4e903a91bb3783ad059fd082fc6
SSDEEP

3072:vp2WaGMt0vyWerC9Bz6yEx3vqfdfHQGWkyC0IMBgqFgV4Mam221evY:v4KMUyCh6yW3ydfHQLkuIYFgV4sh1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
02e1ed70586b3b78ae3ea693cfb7cf81_JaffaCakes118

Files

02e1ed70586b3b78ae3ea693cfb7cf81_JaffaCakes118
.exe windows:4 windows x86 arch:x86

243c283a536b1d846088fd8fedf80ec4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetObjectType
BitBlt
SetStretchBltMode
CreateDIBSection
CreateDCW
CreatePen
CreateCompatibleDC
DeleteDC
SelectObject
LineTo
StretchBlt
CreateBitmap

ole32

CoFreeUnusedLibraries
CoUninitialize
StringFromGUID2
CoInitialize
CoCreateInstance

kernel32

LocalAlloc
ReadFile
WaitCommEvent
LoadLibraryW
WaitCommEvent
LocalFree
GetCurrentThreadId
DisableThreadLibraryCalls
GetModuleFileNameA
CreateFileW
GetTickCount
GetSystemTimeAsFileTime
EnumResourceNamesW
GetVersionExA
ExitProcess
GetCurrentProcessId
CloseHandle
GetFullPathNameW
GlobalLock
ExitProcess
GlobalAlloc
GlobalUnlock

comctl32

ImageList_DragLeave
ImageList_DragMove
ImageList_DragEnter

gdiplus

GdipGetImagePixelFormat
GdipGetImageHeight
GdipCreateBitmapFromFile
GdipGetImageWidth
GdipDisposeImage

msimg32

AlphaBlend
TransparentBlt

winmm

timeGetTime

user32

SetCursor
RedrawWindow
CreatePopupMenu
ClipCursor
FindWindowA
GetDesktopWindow
EnableWindow
LoadCursorW
DestroyMenu
SetWindowPos
TrackPopupMenuEx
InvalidateRect
GetFocus
IsWindow
SetParent
PtInRect

advapi32

RegSetValueW
RegCloseKey
RegOpenKeyExW
RegCreateKeyW
RegDeleteKeyW
RegQueryValueExW
RegSetValueExW
RegEnumKeyExW

Sections

.text
Size: 135KB - Virtual size: 134KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 47KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsr
Size: 512B - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

243c283a536b1d846088fd8fedf80ec4

Headers

File Characteristics

Imports

gdi32

ole32

kernel32

comctl32

gdiplus

msimg32

winmm

user32

advapi32

Sections

.text Size: 135KB - Virtual size: 134KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 47KB - Virtual size: 46KB

.rsr Size: 512B - Virtual size: 84KB

.text
Size: 135KB - Virtual size: 134KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 47KB - Virtual size: 46KB

.rsr
Size: 512B - Virtual size: 84KB