03f7dab81fdfa23e3a5e037b08c5a311_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

03f7dab81fdfa23e3a5e037b08c5a311_JaffaCakes118
Size

812KB
MD5

03f7dab81fdfa23e3a5e037b08c5a311
SHA1

5e465803081816ccad61dfedee6f4f5fd5f132a8
SHA256

039457aa174c1052aaf781131d678302222b595d97f10b27ad77a87d2db5dd46
SHA512

df8d520de2db20669e819cf425fec6e5df4e2495c0c1548ec48e6925453e77befe069faaa18c60fb04f61a7e47b6e8f4c70852c14f87b3c21b727b52e1b02c4a
SSDEEP

12288:HRz6QJoTgHat7LdGG75ITNk3AFsZNh2ppWDZegxh:N6Q6gHatPdGG7CTNJyiWDZei

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
03f7dab81fdfa23e3a5e037b08c5a311_JaffaCakes118

Files

03f7dab81fdfa23e3a5e037b08c5a311_JaffaCakes118
.exe windows:5 windows x86 arch:x86

0d7a4bf12b9fe90f020a95e23b129c01

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_ISOLATION
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
MultiByteToWideChar
GetLastError
VirtualAlloc
GetSystemTimeAsFileTime
InitializeCriticalSection
GetLastError
lstrlenA
InterlockedIncrement
CloseHandle
VirtualAlloc
GetSystemTimeAsFileTime
CreateEventW
GetTickCount
SetLastError
GetLastError
GetVersionExA
CreateThread
HeapAlloc
InterlockedIncrement
GetProcessHeap
GetSystemTimeAsFileTime
DisableThreadLibraryCalls
VirtualAlloc
MultiByteToWideChar
GetVersionExA
GetCurrentProcessId
CloseHandle
FreeLibrary
LeaveCriticalSection
GetVersionExA
LeaveCriticalSection
InitializeCriticalSection
LocalFree
GetSystemTimeAsFileTime
QueryPerformanceCounter
LoadLibraryA
GetModuleFileNameW
GetModuleHandleW
GetProcessHeap
DeleteCriticalSection
GetLastError
ReadFile
VirtualProtect
InterlockedIncrement
GetCurrentProcessId
EnterCriticalSection
GetProcAddress
CreateFileW
GetCurrentProcessId
GetModuleFileNameW
GetModuleFileNameA
VirtualAlloc
GetSystemTimeAsFileTime
GetProcessHeap
LeaveCriticalSection
ReadFile
GetCurrentThreadId
GetModuleHandleW
CreateFileW
HeapDestroy
QueryPerformanceCounter
GetModuleFileNameW
GetCurrentProcessId
lstrcmpiW
GetTickCount
EnterCriticalSection
DisableThreadLibraryCalls
InterlockedCompareExchange
GetCurrentProcess
GetLastError
InterlockedIncrement
GetProcAddress
InitializeCriticalSection
ReadFile
CreateThread
HeapDestroy
ReadFile
CloseHandle
FreeLibrary
GetVersionExA
GetModuleFileNameW
lstrlenA
GetProcAddress
lstrcmpiW
VirtualProtect
DisableThreadLibraryCalls
HeapAlloc
DisableThreadLibraryCalls
LoadLibraryW
GetCurrentProcess
DisableThreadLibraryCalls
GetModuleHandleW
GetVersionExA
LocalFree
LoadLibraryW
GetCurrentProcessId
DeleteCriticalSection
UnhandledExceptionFilter
GetProcessHeap
GetModuleHandleA
Sleep
InterlockedIncrement
LoadLibraryW
GetModuleHandleA
GetSystemTimeAsFileTime

user32

SetCursor
SetWindowTextW
GetParent
LoadStringW
ReleaseDC
InvalidateRect
TranslateMessage
GetDesktopWindow
LoadStringW
BeginPaint
GetSystemMetrics
LoadStringW
SetWindowPos
IsWindow
LoadStringW
SetWindowPos
SendDlgItemMessageW
SendDlgItemMessageW
ShowWindow
GetDlgItem
CharNextW
CharNextW
SetWindowTextW
IsDlgButtonChecked
IsWindow
SetCursor
MessageBoxW
GetSysColor
CreateWindowExW
SendDlgItemMessageW
SetCursor
GetSysColor
SetFocus
GetDC
SetWindowPos
DispatchMessageW
EndDialog
SetForegroundWindow
IsDlgButtonChecked
GetWindowLongW
DispatchMessageW
SendMessageW
GetWindowLongW
TranslateMessage
SetDlgItemTextW
GetSysColor
SendDlgItemMessageW
KillTimer
GetDC
DialogBoxParamW
ShowWindow
LoadIconW
EndDialog
SetWindowPos
SetTimer
GetDlgItem
SetWindowTextW
PostQuitMessage
TranslateMessage
DialogBoxParamW
DispatchMessageW
ReleaseDC
SetWindowPos
LoadCursorW
GetSystemMetrics
SetWindowLongW
DialogBoxParamW
EndPaint
SetWindowTextW
IsWindow
ReleaseDC
SetForegroundWindow
GetWindowRect
GetSystemMetrics
SetWindowPos
InvalidateRect
GetClientRect
GetFocus
LoadCursorW
GetDC
GetSysColor
DestroyWindow
GetClientRect
SetFocus
GetFocus
GetParent
SendMessageW
IsWindow
GetSysColor
TranslateMessage
SetFocus
DefWindowProcW
GetClientRect
GetDesktopWindow
ReleaseDC
GetFocus
GetWindowLongW
SetFocus
CharNextW
DefWindowProcW
SetFocus
GetDlgItem
LoadStringW
GetFocus

Sections

.text
Size: 723KB - Virtual size: 976KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 82KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0d7a4bf12b9fe90f020a95e23b129c01

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 723KB - Virtual size: 976KB

.data Size: - Virtual size: 4KB

.rdata Size: 5KB - Virtual size: 8KB

.rsrc Size: 82KB - Virtual size: 84KB

.text
Size: 723KB - Virtual size: 976KB

.data
Size: - Virtual size: 4KB

.rdata
Size: 5KB - Virtual size: 8KB

.rsrc
Size: 82KB - Virtual size: 84KB