03e446e0fab8a765fa5d914ebc36f4ff_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

03e446e0fab8a765fa5d914ebc36f4ff_JaffaCakes118
Size

805KB
MD5

03e446e0fab8a765fa5d914ebc36f4ff
SHA1

07a78a24343ea96ea3d7d34126419824d3fa56d2
SHA256

e8a791768b1f26f86639e7e0a39f7bbe07bc702f1ffa25a9ed4565c9ff8f6172
SHA512

339f1b55109611d43689c248821d4b26b9324adbc02cf7db2c151f7747c66c283a917bc27fbf2b8d50aed53ffd40668ec2602d5691e004e50cf0e756b225e97b
SSDEEP

12288:5oQY0fo0YptZUGp5Dx/zgf7wKKjwkseq0rVSwqZgx0:5oMfoXpZ5NrIgp24X0X

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
03e446e0fab8a765fa5d914ebc36f4ff_JaffaCakes118

Files

03e446e0fab8a765fa5d914ebc36f4ff_JaffaCakes118
.exe windows:5 windows x86 arch:x86

84db21383afdcc48b3539c89ba1e5aec

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_ISOLATION
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
InterlockedExchange
UnhandledExceptionFilter
GetVersionExA
InterlockedDecrement
GetVersionExA
DeleteCriticalSection
LoadLibraryA
lstrcmpiW
EnterCriticalSection
VirtualProtect
CreateEventW
GetModuleHandleA
ReadFile
GetCurrentProcessId
lstrlenA
GetModuleHandleW
LoadLibraryW
GetModuleHandleW
InitializeCriticalSection
UnhandledExceptionFilter
MultiByteToWideChar
LoadLibraryA
InterlockedCompareExchange
GetLastError
HeapAlloc
GetCurrentProcessId
GetProcAddress
GetModuleHandleA
InterlockedIncrement
GetProcessHeap
LocalAlloc
EnterCriticalSection
CreateThread
GetProcAddress
GetCurrentProcessId
GetProcessHeap
GetModuleFileNameA
GetSystemTimeAsFileTime
Sleep
GetModuleFileNameW
InitializeCriticalSection
UnhandledExceptionFilter
HeapFree
lstrcmpiW
HeapFree
VirtualProtect
Sleep
SetLastError
HeapFree
VirtualProtect
GetVersionExA
LocalAlloc
GetModuleHandleW
GetModuleHandleA
InterlockedCompareExchange
EnterCriticalSection
GetCurrentThreadId
SetLastError
MultiByteToWideChar
VirtualProtect
LeaveCriticalSection
Sleep
GetCurrentThreadId
HeapAlloc
GetModuleHandleW
HeapFree
lstrcmpiW
GetModuleFileNameW
EnterCriticalSection
InterlockedCompareExchange
MultiByteToWideChar
GetCurrentProcessId
CreateThread
GetLastError
lstrlenA
DisableThreadLibraryCalls
CloseHandle
FreeLibrary
LocalAlloc
HeapAlloc
DisableThreadLibraryCalls
HeapFree
ReadFile
DisableThreadLibraryCalls

user32

SetTimer
GetDesktopWindow
PeekMessageW
LoadStringW
GetDesktopWindow
EndDialog
ReleaseDC
SetForegroundWindow
ShowWindow
PostMessageW
DialogBoxParamW
EnableWindow
SetDlgItemTextW
wsprintfA
TranslateMessage
LoadStringW
InvalidateRect
SetWindowLongW
PostQuitMessage
GetClientRect
SetWindowLongW
ShowWindow
PeekMessageW
SetWindowTextW
EnableWindow
CharNextW
PeekMessageW
BeginPaint
PostMessageW
LoadIconW
SetDlgItemTextW
SetCursor
GetSysColor
EndPaint
SetTimer
LoadIconW
DialogBoxParamW
wsprintfA
GetDC
TranslateMessage
DialogBoxParamW
GetDC
GetClientRect
GetParent
TranslateMessage
LoadIconW
SetWindowLongW
GetClientRect
GetFocus
SetCursor
BeginPaint
GetWindowRect
CreateWindowExW
EnableWindow
MessageBoxW
BeginPaint
GetDC
TranslateMessage
GetClientRect
EndDialog
GetWindowLongW
BeginPaint
BeginPaint
GetFocus
SetTimer
SetWindowTextW
SendDlgItemMessageW
GetDesktopWindow
InvalidateRect
GetSysColor
MessageBoxW
DestroyWindow
KillTimer
GetWindowLongW
DestroyWindow
DestroyWindow
SetDlgItemTextW
SetDlgItemTextW
BeginPaint
GetWindowLongW
GetWindowRect
CharNextW

Sections

.text
Size: 718KB - Virtual size: 968KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 82KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

84db21383afdcc48b3539c89ba1e5aec

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 718KB - Virtual size: 968KB

.rdata Size: 4KB - Virtual size: 8KB

.rsrc Size: 82KB - Virtual size: 84KB

.text
Size: 718KB - Virtual size: 968KB

.rdata
Size: 4KB - Virtual size: 8KB

.rsrc
Size: 82KB - Virtual size: 84KB