161b148fe846471a39a22d7b4596a396_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

161b148fe846471a39a22d7b4596a396_JaffaCakes118
Size

119KB
MD5

161b148fe846471a39a22d7b4596a396
SHA1

2af23646221cd551eb37ff21ca9936d7f287340b
SHA256

cdb24fc710bec530f805fb2fe0156687c9b918475b7958ef3223b4decd2b59a2
SHA512

b5fdd9577b83b6a767cbff3549c02e4aef01411524fac883b9bfff3db054116f4a0bb1171cd79431b32d981a26e5396ac696dd1c075d2fee065e23e65caaa747
SSDEEP

3072:LoWWzXYZlpdt1bpti+LXx46AF/xMWFyWqgWva:dsulpjVi+LTAF/GWF8gWv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
161b148fe846471a39a22d7b4596a396_JaffaCakes118

Files

161b148fe846471a39a22d7b4596a396_JaffaCakes118
.exe windows:4 windows x86 arch:x86

087f2863ac2ff7db56c365b20b95d670

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTimeFormatW
OutputDebugStringW
GlobalReAlloc
SetUnhandledExceptionFilter
TerminateThread
lstrcatA
CreateDirectoryW
VirtualAlloc
FreeEnvironmentStringsW
GetLastError
GetFileType
GetCurrentThread
CreateProcessA
HeapFree
CreateDirectoryA
WriteConsoleW
GetWindowsDirectoryW
GlobalAlloc
GetProcAddress
LoadLibraryA
IsBadWritePtr
FindNextFileW
QueryPerformanceCounter
LoadLibraryW
CloseHandle
GetCurrentThreadId
GetModuleHandleA
SetFilePointer
CreatePipe
ExitProcess
GetProcAddress
GetSystemInfo
GetSystemDirectoryA
OutputDebugStringA

msvcrt

atoi
memcpy
__wgetmainargs
wcsncpy
memset
_iob
sprintf
_acmdln
_vsnprintf
_wcsnicmp
wcsncmp
strcpy
strncpy
towupper
_wtoi
__p__commode

user32

RemoveMenu
GetMenuItemCount
LoadCursorW
OpenClipboard
LoadStringW
ReleaseDC
RegisterDeviceNotificationW
GetKeyState
SystemParametersInfoW
LoadAcceleratorsW
RealChildWindowFromPoint
GetAsyncKeyState
DeleteMenu
ShowWindow
GetDlgItem
DialogBoxParamW
MsgWaitForMultipleObjects
SetScrollPos
GetWindowPlacement
DispatchMessageA
PostQuitMessage
LoadStringA
SetCapture
InvalidateRect

gdi32

SetTextColor
SelectPalette
CreatePen
SetMapMode
PatBlt
CreateSolidBrush
CreateFontIndirectA
SetPixel
BitBlt
SetBkColor
DeleteDC
GetDeviceCaps
SelectObject
SaveDC
CreateCompatibleDC

opengl32

glColor3us
glColor4i
glTexCoord3fv
glColor3f
glTexCoord2d
glCopyTexSubImage1D
glNormal3f
glClearStencil
glInitNames
glGetTexImage
wglCopyContext
glRectdv
glGetPixelMapusv

Exports

Exports

MltSnfkdlmAb
Pmvpwvn
KaKspglth
OiQqkgxQmcanBpfihbi
BbhkxlyNdjkXfbbtjzGd

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

idea0
Size: 512B - Virtual size: 277B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 90B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 105KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 52B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

087f2863ac2ff7db56c365b20b95d670

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

gdi32

opengl32

Exports

Exports

Sections

.text Size: 9KB - Virtual size: 9KB

.rdata Size: 2KB - Virtual size: 2KB

idea0 Size: 512B - Virtual size: 277B

.data Size: 512B - Virtual size: 90B

.rsrc Size: 105KB - Virtual size: 104KB

.reloc Size: 512B - Virtual size: 52B

.text
Size: 9KB - Virtual size: 9KB

.rdata
Size: 2KB - Virtual size: 2KB

idea0
Size: 512B - Virtual size: 277B

.data
Size: 512B - Virtual size: 90B

.rsrc
Size: 105KB - Virtual size: 104KB

.reloc
Size: 512B - Virtual size: 52B