14bb8ef4e95ca0b0e555b235887061ae_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

14bb8ef4e95ca0b0e555b235887061ae_JaffaCakes118
Size

37KB
MD5

14bb8ef4e95ca0b0e555b235887061ae
SHA1

60cbef6cef9a1c199f49dbffea11e67b5c4621ec
SHA256

e0d2da018ec24ee52442a1a8f3b713101dfbeab4a4a4b6884b151e9c9aa6d559
SHA512

3fb5f66b42da86293ddc5ccc79c4add1ce48232f98a035f9891b5e1001f6648c261309f8fc3f4c216f27061c669a1c075cb61395d37cc23ad6c759469aaf2f12
SSDEEP

384:g1no25kxR90XXFvGcUbCUlkgw2x+UFwxDS6OCgoUbcjka9TYAqDrN5o1QEzNsILM:Yo25lx8CU6glFejOCgRbcij3oiZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
14bb8ef4e95ca0b0e555b235887061ae_JaffaCakes118

Files

14bb8ef4e95ca0b0e555b235887061ae_JaffaCakes118
.exe windows:5 windows x86 arch:x86

38af1b14c2546687f6f25fbd396458f3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
lstrlenA
LeaveCriticalSection
InterlockedDecrement
SetLastError
InitializeCriticalSection
QueryPerformanceCounter
GetModuleFileNameA
DisableThreadLibraryCalls
VirtualAlloc
lstrlenA
GetProcAddress
FreeLibrary
VirtualAlloc
UnhandledExceptionFilter
lstrlenA
InterlockedExchange
Sleep
Sleep
VirtualProtect
ReadFile
InterlockedDecrement
LocalFree
HeapFree
lstrcmpiW
VirtualProtect
MultiByteToWideChar
SetLastError
GetModuleHandleA
InitializeCriticalSection
CreateThread
lstrlenA
LocalFree
VirtualProtect
SetLastError
DisableThreadLibraryCalls
CreateThread
GetModuleHandleW
UnhandledExceptionFilter
GetModuleHandleW
GetCurrentProcess
InterlockedExchange
FreeLibrary
lstrlenA
LoadLibraryW
CreateThread
InterlockedCompareExchange
GetProcessHeap
SetLastError
HeapDestroy
GetModuleHandleW
InterlockedCompareExchange
lstrlenA
MultiByteToWideChar
VirtualProtect
InterlockedIncrement
ReadFile
InterlockedCompareExchange
DeleteCriticalSection
InterlockedDecrement
DisableThreadLibraryCalls
SetLastError
LoadLibraryA
GetModuleHandleA
VirtualAlloc
GetTickCount
GetCurrentThreadId
Sleep
VirtualAlloc

user32

SetWindowTextW
GetSysColor
SetDlgItemTextW
GetSystemMetrics
EndDialog
wsprintfA
SetFocus
GetFocus
IsDlgButtonChecked
SetTimer
DispatchMessageW
LoadStringW
EnableWindow
SetWindowLongW
GetSysColor
BeginPaint
DialogBoxParamW
SetFocus
ShowWindow
GetDesktopWindow
SetTimer
DefWindowProcW
InvalidateRect
KillTimer
SetWindowPos
wsprintfA
EndDialog
wsprintfA
SetTimer
InvalidateRect
DispatchMessageW
ShowWindow
GetSysColor
MessageBoxW
SetCursor
PostQuitMessage
SetDlgItemTextW
SetFocus
EndDialog
PostQuitMessage
SetCursor
PostMessageW
PostQuitMessage
SetDlgItemTextW
ReleaseDC
SetFocus
SetWindowPos
GetParent
GetFocus
DestroyWindow
GetDesktopWindow
SetForegroundWindow
SetWindowPos
SetWindowPos
EnableWindow
SetCursor
ReleaseDC
SetWindowPos
LoadCursorW
PostQuitMessage

Sections

.text
Size: 28KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

38af1b14c2546687f6f25fbd396458f3

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 28KB - Virtual size: 32KB

.rdata Size: 3KB - Virtual size: 4KB

.rsrc Size: 4KB - Virtual size: 24KB

.text
Size: 28KB - Virtual size: 32KB

.rdata
Size: 3KB - Virtual size: 4KB

.rsrc
Size: 4KB - Virtual size: 24KB