0683b9e7a1456f8dac5da39e873d4401_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0683b9e7a1456f8dac5da39e873d4401_JaffaCakes118
Size

50KB
MD5

0683b9e7a1456f8dac5da39e873d4401
SHA1

7b0ba8cb95f0f2201c3deafbf9a8c5b7cf148858
SHA256

ae560acfc77c667850acf515d37d8e11993b78a34e7ca162900c282c3e0b4e6b
SHA512

3764dd9cdb7617cfb6365daf7ef0da9cd20e3cbe52493b8a4af29d01604086ffca06091005db9d653ce6840cb1f2fb05a6589f122111948a3e656bc5ae7ace83
SSDEEP

768:8PvjV5bqdm0rKH3PEFL/JTfnQOut50f15uG0jaHxh5vDa/M0NvV:ISm0rOPEFL/pdA0fOn+Hl2XNvV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0683b9e7a1456f8dac5da39e873d4401_JaffaCakes118

Files

0683b9e7a1456f8dac5da39e873d4401_JaffaCakes118
.exe windows:5 windows x86 arch:x86

e2797a568798cef847a87052d1dea184

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadFile
QueryPerformanceCounter
LeaveCriticalSection
HeapDestroy
QueryPerformanceCounter
CreateFileW
GetModuleFileNameW
GetVersionExA
DisableThreadLibraryCalls
HeapAlloc
GetProcessHeap
InterlockedDecrement
CreateThread
ReadFile
Sleep
HeapFree
LeaveCriticalSection
InterlockedCompareExchange
DisableThreadLibraryCalls
GetCurrentProcess
GetModuleHandleA
GetCurrentProcess
CreateFileW
ReadFile
Sleep
GetModuleHandleW
GetModuleFileNameW
InterlockedDecrement
EnterCriticalSection
CreateEventW
VirtualAlloc
CloseHandle
LeaveCriticalSection
GetProcAddress
GetModuleHandleW
LocalAlloc
DisableThreadLibraryCalls
MultiByteToWideChar
ReadFile
LeaveCriticalSection
LoadLibraryW
CreateThread
LeaveCriticalSection
GetCurrentThreadId
ReadFile
GetCurrentThreadId
EnterCriticalSection
QueryPerformanceCounter
LocalAlloc
UnhandledExceptionFilter

user32

MessageBoxW
EndPaint
SetWindowLongW
KillTimer
TranslateMessage
InvalidateRect
IsDlgButtonChecked
LoadStringW
LoadCursorW
KillTimer
GetClientRect
PostMessageW
SetFocus
SetForegroundWindow
GetDC
BeginPaint
GetWindowRect
GetWindowLongW
GetClientRect
LoadIconW
IsDlgButtonChecked
IsWindow
GetClientRect
IsDlgButtonChecked
KillTimer
DispatchMessageW
PostQuitMessage
SetForegroundWindow
GetFocus
GetFocus
CharNextW
SetCursor
LoadCursorW
SetWindowLongW
SetFocus
GetClientRect
GetWindowLongW
BeginPaint
BeginPaint
SetFocus
BeginPaint
GetParent
GetFocus
DestroyWindow
TranslateMessage
GetSystemMetrics
GetClientRect
DefWindowProcW
GetSysColor
SetWindowTextW
SetWindowPos
GetWindowRect
KillTimer

Sections

.text
Size: 22KB - Virtual size: 28KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 23KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e2797a568798cef847a87052d1dea184

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 22KB - Virtual size: 28KB

.data Size: 512B - Virtual size: 4KB

.rdata Size: 3KB - Virtual size: 4KB

.rsrc Size: 23KB - Virtual size: 24KB

.text
Size: 22KB - Virtual size: 28KB

.data
Size: 512B - Virtual size: 4KB

.rdata
Size: 3KB - Virtual size: 4KB

.rsrc
Size: 23KB - Virtual size: 24KB