24e223c861cedfd124a8c4c837b4b674_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

24e223c861cedfd124a8c4c837b4b674_JaffaCakes118
Size

136KB
MD5

24e223c861cedfd124a8c4c837b4b674
SHA1

b296a1808ee170305d08f43dfb399253f8e9c2ef
SHA256

16f571f3aac6dd43a9b007a9171a8b563a6667dd991798812b27327854cd2661
SHA512

4a4cda62047addd223bc0edfc306e10bbe009ec9b91071062de7ce3951e5f1a3d427f5b390e38bb9209147c48112047f749241d06ba559522b0dbef8f163953c
SSDEEP

3072:1Hb1TIcMuJkL1bLeviBpYntU7RQzoLXe92JvvqB4:1HTMOkvKtU9Qz925

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
24e223c861cedfd124a8c4c837b4b674_JaffaCakes118

Files

24e223c861cedfd124a8c4c837b4b674_JaffaCakes118
.exe windows:5 windows x86 arch:x86

50569f189b716a543da0a16f0675fe4a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

_lclose
GetLastError
DeleteTimerQueueEx
GetStringTypeW
VirtualAlloc
GetProcAddress
HeapAlloc
VirtualProtect
WriteConsoleW
ExitThread
LoadLibraryW
OutputDebugStringA
lstrlenA
GetModuleHandleA
FreeLibrary
GetWindowsDirectoryA
VirtualFree
CopyFileExA
FindFirstFileW
GetCurrentProcess
CopyFileA

msvcrt

malloc
_exit
strncpy
memcpy
_except_handler3
__CxxFrameHandler
swprintf
wcscmp
__p__commode
wcscat
__winitenv
free
iswdigit
_wtol
_iob
_vsnprintf
wcslen
_wcmdln
wcscpy
_controlfp
_snwprintf
_adjust_fdiv
__initenv
_ftol
_purecall
__p__fmode
swscanf
_c_exit
_cexit
wcschr
__dllonexit

user32

UnregisterClassW
ClientToScreen
ScreenToClient
LoadMenuW
GetMenuItemCount
GetParent
LoadCursorA
LoadCursorW
DispatchMessageW
GetCursorPos
SendMessageA
SendMessageW
ReleaseDC
SetCapture
IsWindow
GetProcessWindowStation
DestroyWindow
CopyRect
ReleaseCapture
SetScrollPos
BeginPaint
MapWindowPoints
wsprintfW
CheckDlgButton
LoadImageW
RegisterClassA
DialogBoxParamA

gdi32

CreateFontIndirectW
Rectangle
RestoreDC
PatBlt
CreateBitmap
CreateCompatibleDC
TranslateCharsetInfo
SetBkMode
StretchBlt
SetTextColor

opengl32

glColor3ui
glTexCoord2dv
wglShareLists
glColor4i
glStencilMask
glFogfv
glColor4f
GlmfBeginGlsBlock
glTexCoord2d
glColor4d

Exports

Exports

MbmUbbkdurQicmn
TfbufkePmbyvqk
ZwPszbjiePisetg

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.crt
Size: 512B - Virtual size: 17B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 124B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 55KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 102B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

50569f189b716a543da0a16f0675fe4a

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

gdi32

opengl32

Exports

Exports

Sections

.text Size: 12KB - Virtual size: 12KB

.rdata Size: 2KB - Virtual size: 2KB

.crt Size: 512B - Virtual size: 17B

.edata Size: 512B - Virtual size: 124B

.data Size: 55KB - Virtual size: 54KB

.rsrc Size: 64KB - Virtual size: 63KB

.reloc Size: 512B - Virtual size: 102B

.text
Size: 12KB - Virtual size: 12KB

.rdata
Size: 2KB - Virtual size: 2KB

.crt
Size: 512B - Virtual size: 17B

.edata
Size: 512B - Virtual size: 124B

.data
Size: 55KB - Virtual size: 54KB

.rsrc
Size: 64KB - Virtual size: 63KB

.reloc
Size: 512B - Virtual size: 102B