075e0ca48ca4471e4d63cb87808fc388_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

075e0ca48ca4471e4d63cb87808fc388_JaffaCakes118
Size

151KB
MD5

075e0ca48ca4471e4d63cb87808fc388
SHA1

6fc1dacc2d370aaad5a2d0100840bfc60443bb31
SHA256

b124fdd713b8d954fb9e9291bb24a2435cb789a4dae676364c49547a5ebf9275
SHA512

bdb45bd8dd48ca94fdf98c7f80d022665494bf365d6d63794086018df316d5177c51dc08dc1a0a3551bc26340df9b90fec9430311566a63080352d69169fe5eb
SSDEEP

3072:GFYw23y8sqNFBT9IVkroZVrWfojS1TBIckgJid/p5wweHJy:O3yyos+roZBjjS1SckgJiDYy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
075e0ca48ca4471e4d63cb87808fc388_JaffaCakes118

Files

075e0ca48ca4471e4d63cb87808fc388_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e92c6b11ec4e4dc09c11c84503e58c13

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcessId
GetModuleHandleA
GetStartupInfoA
GetLocaleInfoW
GetCPInfoExA

msvcrt

_msize
_aligned_free
_sys_errlist
_ismbbtrail
_acmdln
_tell
__p__fmode
_flushall
__p__commode
exit
__setusermatherr
_ltow
sinh
_putw
__set_app_type
_ismbbkana
_wcsrev
_spawnvpe
_wasctime
_cexit
_exit
clock
_spawnl
_chkesp
_umask
wcsxfrm
atan2
_mbsnbcat
_adjust_fdiv
_controlfp
isprint
_searchenv
wcsncpy
_tempnam
_tzset
__getmainargs
_initterm
_wfdopen
_dup
_ftime
_except_handler3
cosh
wscanf
_mbstrlen
_strrev
_getche
_XcptFilter

user32

LoadIconA
DragObject
EndMenu
IsCharUpperW
GetIconInfo
OpenDesktopA
DdeGetData
EmptyClipboard
LoadAcceleratorsW
LookupIconIdFromDirectoryEx
EnumThreadWindows
AttachThreadInput
ChangeDisplaySettingsExA
GetMessageW
EnumDisplaySettingsExA
SetMenuInfo
EndPaint
CharToOemBuffW
CloseDesktop
LoadCursorW
GetMonitorInfoW
keybd_event
GetDlgItemInt
SendNotifyMessageA
DdeClientTransaction
TranslateMDISysAccel
WindowFromDC
ChangeDisplaySettingsExW
DispatchMessageA
SendMessageA
GetUserObjectInformationA
IntersectRect
SetSysColors
CreateDesktopA
GetWindowContextHelpId
GetKeyboardState
GetSysColorBrush
DdeAddData
MessageBoxA
DdeAccessData
SetPropW
SetWindowRgn
GetLastInputInfo
ToAsciiEx
ScrollWindow
EnumPropsExA
ExcludeUpdateRgn

gdi32

SetBkColor
GetCharWidthA
GetEnhMetaFilePaletteEntries
AddFontResourceExA
PaintRgn
GdiSetBatchLimit
AddFontResourceW
UpdateICMRegKeyW
GetTextExtentPointA
GetGlyphOutlineA
GetClipRgn
GetFontAssocStatus
GdiFlush
StartPage
CreateEllipticRgnIndirect
PlayMetaFile
GdiComment
PolyTextOutA
RestoreDC
GdiGetBatchLimit
SetMapMode
GetTextExtentPointI
RemoveFontResourceExA
GetWindowOrgEx
SelectClipPath
SelectObject
EnumFontsA
CopyEnhMetaFileA

Sections

.text
Size: 87KB - Virtual size: 86KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 53KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e92c6b11ec4e4dc09c11c84503e58c13

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

gdi32

Sections

.text Size: 87KB - Virtual size: 86KB

.rdata Size: 53KB - Virtual size: 52KB

.data Size: 512B - Virtual size: 80KB

.rsrc Size: 9KB - Virtual size: 8KB

.text
Size: 87KB - Virtual size: 86KB

.rdata
Size: 53KB - Virtual size: 52KB

.data
Size: 512B - Virtual size: 80KB

.rsrc
Size: 9KB - Virtual size: 8KB