034c2b37812b563baf1b84d6d46438a1_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

034c2b37812b563baf1b84d6d46438a1_JaffaCakes118
Size

354KB
MD5

034c2b37812b563baf1b84d6d46438a1
SHA1

5434d50bcab4099f7ffb6553a34abefd330e4542
SHA256

d1c1b07088c15dd997d5616f348d2b82dfa247588ecfc774ebfc1b923081c6dd
SHA512

c7c4e8086167877417506d4da3270f5c0dd558d46b3221ce8f52d304844be38c76438259db0fabfc7128fa91f9af5d8cae9d045625c91f68d64500d3c9aa558e
SSDEEP

6144:K5P0lOR79k9WepG6lztk2nb0VpmCSc01bM+7POkGNeXKrwK0:m0lO59k9Yd60zmCAbZnZK5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
034c2b37812b563baf1b84d6d46438a1_JaffaCakes118

Files

034c2b37812b563baf1b84d6d46438a1_JaffaCakes118
.exe windows:5 windows x86 arch:x86

5f02407163f44e1f4b088b242ab506b5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

PDB Paths

Imports

kernel32

HeapReAlloc
HeapSize
FlushFileBuffers
GetConsoleMode
GetConsoleCP
SetStdHandle
CreateFileA
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
ReadFile
MultiByteToWideChar
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetModuleFileNameA
SetFilePointer
ReleaseSemaphore
HeapCreate
InterlockedDecrement
SetLastError
InterlockedIncrement
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
GetFileAttributesA
RtlUnwind
TerminateProcess
EncodePointer
IsDebuggerPresent
IsProcessorFeaturePresent
LCMapStringW
GetStringTypeW
SetEndOfFile
GetProcessHeap
WriteConsoleW
CreateFileW
CreateThread
CloseHandle
GetCurrentThreadId
GetModuleHandleA
WaitForMultipleObjects
GetLocalTime
GetModuleFileNameW
GetLastError
SetUnhandledExceptionFilter
WriteFile
CreateSemaphoreA
Sleep
GetTickCount
WaitForSingleObject
GetCurrentProcess
UnhandledExceptionFilter
DeleteCriticalSection
GetFileType
InitializeCriticalSectionAndSpinCount
GetStdHandle
LoadLibraryW
HeapAlloc
HeapFree
GetProcAddress
GetModuleHandleW
ExitProcess
DecodePointer
GetCommandLineA
HeapSetInformation
GetStartupInfoW
RaiseException
EnterCriticalSection
LeaveCriticalSection
SetHandleCount

user32

MoveWindow
DestroyWindow
GetDlgItemInt
UpdateLayeredWindow
GetWindowRect
CreateDialogParamA
InsertMenuItemA
PostQuitMessage
SendDlgItemMessageA
SetCapture
GetParent
GetClientRect
SetFocus
SendMessageA
EnumWindows
GetDC
GetMenu
LoadIconW
OffsetRect
SetWindowLongA
MessageBoxA
InvalidateRect
GetWindowLongA
ReleaseDC
EnableMenuItem
GetDlgItem
DefWindowProcA
GetDesktopWindow
GetSysColor
SetWindowPos
CheckDlgButton
ShowWindow
CreatePopupMenu
IsDlgButtonChecked
DrawMenuBar
GetMenuItemCount
ReleaseCapture
UpdateWindow
LoadCursorA
GetDlgCtrlID
DialogBoxParamA
SetWindowTextW
CopyRect
GetWindow

gdi32

DeleteDC
CreateDIBSection
DeleteObject
SelectObject
CreateCompatibleDC
Rectangle
CreatePen
GetStockObject
CreateSolidBrush

comdlg32

ChooseColorA

comctl32

ImageList_Destroy

Sections

.data
Size: 97KB - Virtual size: 97KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 234KB - Virtual size: 268KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5f02407163f44e1f4b088b242ab506b5

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

comdlg32

comctl32

Sections

.data Size: 97KB - Virtual size: 97KB

.rdata Size: 15KB - Virtual size: 15KB

.text Size: 234KB - Virtual size: 268KB

.rsrc Size: 5KB - Virtual size: 5KB

.data
Size: 97KB - Virtual size: 97KB

.rdata
Size: 15KB - Virtual size: 15KB

.text
Size: 234KB - Virtual size: 268KB

.rsrc
Size: 5KB - Virtual size: 5KB