0633631727771a19c3593b678268e8f9_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

0633631727771a19c3593b678268e8f9_JaffaCakes118
Size

276KB
MD5

0633631727771a19c3593b678268e8f9
SHA1

2c8af799af11e03abc5face54f3943c2b3071203
SHA256

dd754c7e866babc27f01d9e9b3bbac680dcc3e83b8a748d39e026b871052b527
SHA512

f705f51b7f49f51a13c4509909b80e7eaeecf2914867b41f42dd13f655ad1e815355366cb05b9a6093c1887dae569f204b9ca7ad5761a3f1952b3cbc9b31645b
SSDEEP

6144:wL+ROMHXZ99JX2WngMNSYZh1r0CLf2dWsLf2EUOH9:wQ7J9PgMN7LsqEUO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0633631727771a19c3593b678268e8f9_JaffaCakes118

Files

0633631727771a19c3593b678268e8f9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

83275044fcf1d1ac6b9691a0b9095109

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

RemoveFontResourceA
DPtoLP
CreateDCW
GetTextFaceA
GetBrushOrgEx
GetKerningPairsA
CreateDCA
SetViewportOrgEx
ScaleWindowExtEx
GetPixel
CreateRoundRectRgn
FillRgn
GetSystemPaletteEntries
SaveDC
SetViewportExtEx
DeleteDC
SetPolyFillMode
ScaleViewportExtEx
DeleteObject
GetRgnBox
SetTextColor
GetGlyphOutlineA
GetEnhMetaFileBits
SetAbortProc
Pie
GetClipRgn
GetTextMetricsA
GetMapMode
GetStockObject
GetTextColor
EndPath
Arc
GetObjectW
GetWinMetaFileBits
SetRectRgn
IntersectClipRect
GetObjectType
ExtSelectClipRgn
CreateBitmap
CreateDIBSection
SetBkMode
CreateCompatibleDC
CreateICA
GetEnhMetaFilePaletteEntries
GetBkColor
EnumFontFamiliesExW
CreateDIBPatternBrushPt
CreateFontIndirectA
OffsetRgn
GetEnhMetaFileHeader
CreateCompatibleBitmap
CreateICW
GetWindowOrgEx
SetTextAlign
UpdateColors
RestoreDC
GetBitmapBits
SetBitmapBits
SetPixel
CreateSolidBrush
SelectClipRgn
ExtCreatePen
GetDIBColorTable
AbortDoc
PolyBezierTo
SelectPalette
ExtCreateRegion
PatBlt
GetDeviceCaps
SetMapMode
SetDIBColorTable
CreateFontW
CreateFontA
CloseEnhMetaFile
OffsetWindowOrgEx
StartPage
PlayEnhMetaFile
StrokePath
ExtEscape
GetTextAlign
CopyEnhMetaFileW
EndPage
CreatePen
GetFontData
ExtTextOutA
GetObjectA
ExtFloodFill
EqualRgn
GetGlyphOutlineW

advapi32

EnumServicesStatusA
SetSecurityDescriptorSacl
RegQueryInfoKeyA
StartServiceCtrlDispatcherW
CloseServiceHandle
LogonUserA
InitiateSystemShutdownA
LockServiceDatabase
RegCloseKey
LsaOpenPolicy
RegQueryValueW
CreateServiceW
RegOverridePredefKey

msvcrt

__setusermatherr
__dllonexit
strcspn
wcscat
_controlfp
vsprintf
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
iswxdigit
_initterm
__getmainargs
_acmdln
pow
_CIpow
exit

version

GetFileVersionInfoSizeA
VerInstallFileW
GetFileVersionInfoA

Sections

.text
Size: 68KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 541KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 164KB - Virtual size: 163KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

83275044fcf1d1ac6b9691a0b9095109

Headers

File Characteristics

Imports

gdi32

advapi32

msvcrt

version

Sections

.text Size: 68KB - Virtual size: 66KB

.rdata Size: 32KB - Virtual size: 31KB

.data Size: 8KB - Virtual size: 541KB

.rsrc Size: 164KB - Virtual size: 163KB

.text
Size: 68KB - Virtual size: 66KB

.rdata
Size: 32KB - Virtual size: 31KB

.data
Size: 8KB - Virtual size: 541KB

.rsrc
Size: 164KB - Virtual size: 163KB