0708d4b352540298fca573d44853b8c8_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0708d4b352540298fca573d44853b8c8_JaffaCakes118
Size

498KB
MD5

0708d4b352540298fca573d44853b8c8
SHA1

f0b041530f03575e6ddd016e5dd1b4210489dbe3
SHA256

6edbd831bd102fa9b60f5592c5224f17916f2712948f88eee54c972bb6c627d2
SHA512

829fe9178131a3280531cbff7beeaab34962d4f195373dd4af313169d87286df61844465d32effdb38061b5a063116d339a3190da18da96112f84f91404b8441
SSDEEP

12288:/euCeiKRMHvlULIF3ehhEkwqHa0ymMTk5JPaFU2WLZ1D2:/eXDKOHvmcherHa3vTUtwUDt2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0708d4b352540298fca573d44853b8c8_JaffaCakes118

Files

0708d4b352540298fca573d44853b8c8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b0d4e2973661c12eed017de9a30790b7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHEmptyRecycleBinW
SHGetDiskFreeSpaceExA
ord180

gdi32

EqualRgn
SelectPalette
SetMapMode
SetColorAdjustment
SetMiterLimit
CreatePen
GetViewportExtEx
LineTo
SetDIBitsToDevice
CombineTransform
GetPaletteEntries
GetCharWidth32A
EnumFontsA
CreateRectRgnIndirect
PolyBezier
CreateRoundRectRgn
FrameRgn
PathToRegion
AddFontResourceA
RealizePalette
CreatePenIndirect
StretchBlt
DPtoLP
GetPath
GetCurrentPositionEx
GetGraphicsMode
UnrealizeObject
CreatePolygonRgn
SetPaletteEntries
GetCharABCWidthsA
GetMapMode

comctl32

ord5
ord6
ord2

kernel32

GetModuleFileNameA
GetProcAddress
FlushFileBuffers
Sleep
GetModuleHandleA
LoadLibraryA
GetStartupInfoA

user32

SendMessageA
AnyPopup
GetCaretPos
BringWindowToTop
IsRectEmpty
MessageBoxA
SubtractRect
IsZoomed
UnionRect
ChildWindowFromPoint
CreateDialogIndirectParamA
EndDeferWindowPos
IntersectRect
MessageBoxIndirectA
DefDlgProcA
EqualRect
MapDialogRect
MessageBoxExW
ClientToScreen
IsIconic

msvcrt

_exit
_XcptFilter
_cexit
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_controlfp
_except_handler3
_c_exit

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 116B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.udata
Size: - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 96KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 348B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b0d4e2973661c12eed017de9a30790b7

Headers

File Characteristics

Imports

shell32

gdi32

comctl32

kernel32

user32

msvcrt

Sections

.text Size: 7KB - Virtual size: 7KB

.data Size: 512B - Virtual size: 116B

.udata Size: - Virtual size: 48KB

.rdata Size: 96KB - Virtual size: 96KB

.reloc Size: 512B - Virtual size: 348B

.text
Size: 7KB - Virtual size: 7KB

.data
Size: 512B - Virtual size: 116B

.udata
Size: - Virtual size: 48KB

.rdata
Size: 96KB - Virtual size: 96KB

.reloc
Size: 512B - Virtual size: 348B