043a56d1ea1d71e5bbb2b060a4fd94e4_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

043a56d1ea1d71e5bbb2b060a4fd94e4_JaffaCakes118
Size

28KB
MD5

043a56d1ea1d71e5bbb2b060a4fd94e4
SHA1

5a71deefefec4b6a7710360707df128535395993
SHA256

ea38d4b18c93ccf5798bc46604341667ae4b43c67681b61b87ded496090d67c5
SHA512

04fafb7eb7682432d68ea0ce0295f7a8b4ef37b0c8816b57c48fdfe7a1dd1652a1389c213d7f558b28a6f134f58691359bf32c48dbadd84653b3213021e01359
SSDEEP

384:brEjqwM6lIsQKUZWcbwvJF2eEyPqVOoMJ0UjxnJv/XCeMIozYoZyz7hDGM:fUIsnUZWcb4pKOjhxnJLMIU0A

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
043a56d1ea1d71e5bbb2b060a4fd94e4_JaffaCakes118

Files

043a56d1ea1d71e5bbb2b060a4fd94e4_JaffaCakes118
.exe windows:5 windows x86 arch:x86

ff3c43a73b2e60ae9472fb6fb56ad5ba

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateEventW
GetTickCount
GetProcessHeap
CloseHandle
GetCurrentThreadId
GetCurrentProcess
LoadLibraryW
HeapDestroy
SetLastError
GetProcessHeap
GetModuleFileNameA
DeleteCriticalSection
GetCurrentProcess
HeapFree
LoadLibraryA
LoadLibraryA
MultiByteToWideChar
ReadFile
GetProcAddress
GetCurrentProcessId
LoadLibraryW
LoadLibraryA
lstrcmpiW
ReadFile
HeapDestroy
DisableThreadLibraryCalls
InterlockedExchange
HeapDestroy
GetVersionExA
CloseHandle
CreateThread
GetLastError
InitializeCriticalSection
InitializeCriticalSection
LoadLibraryW
GetModuleFileNameA
CloseHandle
lstrlenA
InterlockedCompareExchange
GetLastError
GetSystemTimeAsFileTime
GetTickCount
InterlockedCompareExchange
CreateFileW
SetLastError
CreateThread
LocalFree
LocalAlloc
FreeLibrary
GetCurrentProcess
CloseHandle
LocalFree
LoadLibraryA
InterlockedIncrement
GetProcAddress
lstrcmpiW
ReadFile

user32

ShowWindow
wsprintfA
LoadCursorW
MessageBoxW
SetWindowLongW
CharNextW
GetDlgItem
LoadCursorW
IsDlgButtonChecked
BeginPaint
MessageBoxW
PostQuitMessage
LoadCursorW
PeekMessageW
GetDlgItem
TranslateMessage
SetWindowLongW
GetDlgItem
SendDlgItemMessageW
GetClientRect
SetWindowPos
PeekMessageW
LoadIconW
CreateWindowExW
ShowWindow
EndPaint
ReleaseDC
GetWindowRect
SendMessageW
SetCursor
GetParent
SendMessageW
GetSysColor
GetParent
GetDesktopWindow
PeekMessageW
GetFocus
SendDlgItemMessageW
BeginPaint
TranslateMessage
IsDlgButtonChecked
ShowWindow
GetParent
GetDesktopWindow
IsDlgButtonChecked
ShowWindow
SetCursor
EndDialog
InvalidateRect
GetWindowRect
SetFocus
SetWindowPos
LoadIconW
DialogBoxParamW
InvalidateRect
DestroyWindow
LoadCursorW
ReleaseDC

Sections

.text
Size: 23KB - Virtual size: 28KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ff3c43a73b2e60ae9472fb6fb56ad5ba

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 23KB - Virtual size: 28KB

.data Size: 512B - Virtual size: 4KB

.rdata Size: 3KB - Virtual size: 4KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 23KB - Virtual size: 28KB

.data
Size: 512B - Virtual size: 4KB

.rdata
Size: 3KB - Virtual size: 4KB

.rsrc
Size: 1024B - Virtual size: 4KB