3c7d4f37e21b544d1ef49ef51d38ce10_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3c7d4f37e21b544d1ef49ef51d38ce10_JaffaCakes118
Size

37KB
MD5

3c7d4f37e21b544d1ef49ef51d38ce10
SHA1

b8d8939aa4967800ada52c61bb546783d8b7a101
SHA256

bdabe811f76b5dc34f5c41e121f0ad06150f026a93e0408f4e8cff0d7eccd89b
SHA512

b76a88b9edfe48d3338f37b8cc34cf0be30dce84c07d9d56796b87dc4cee15d07b4da102dcfc40b46b8d7b649baaa8becf52562d4f7c8dfb1b0e416e371a0ae9
SSDEEP

768:YKypbZ0k8yIBrwwPJZaF88ODD/yRvNYR/a87OQLA:YjpNvIBrwgkqz/y1N6JOR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3c7d4f37e21b544d1ef49ef51d38ce10_JaffaCakes118

Files

3c7d4f37e21b544d1ef49ef51d38ce10_JaffaCakes118
.exe windows:4 windows x86 arch:x86

65cecd6058d2a77f0441bfd3447c6b78

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
GetModuleHandleA
InterlockedExchange
GetProcAddress
InterlockedExchange
QueryPerformanceCounter
LoadLibraryW
VirtualAlloc
CreateThread
LocalFree
MultiByteToWideChar
MultiByteToWideChar
MultiByteToWideChar
EnterCriticalSection
QueryPerformanceCounter
HeapDestroy
CreateEventW
HeapDestroy
GetCurrentProcessId
GetTickCount
DeleteCriticalSection
GetCurrentProcess
EnterCriticalSection
VirtualProtect
CreateThread
EnterCriticalSection
VirtualAlloc
GetLastError
GetCurrentProcess
lstrlenA
HeapAlloc
LocalFree
GetCurrentProcessId
ReadFile
EnterCriticalSection
CreateThread
CreateFileW
HeapAlloc
GetCurrentProcessId
CloseHandle
VirtualProtect
GetProcAddress
GetModuleFileNameA
InterlockedExchange
GetCurrentProcess
InitializeCriticalSection
QueryPerformanceCounter
CreateFileW
HeapFree
CreateFileW
GetLastError
CreateEventW

gdi32

GetBkMode
CreatePen
CreateRectRgn
CreateBitmap
LineTo
SetTextColor
CreateBitmapIndirect
GetCurrentObject
CreateFontIndirectA
CreateBitmap
LineTo
SetTextColor
BitBlt
GetBrushOrgEx
GetBkMode
SetTextColor
GetBrushOrgEx
SetPixel
GetBkMode
GetBkColor
CreateFontA
CreateBitmap
SetBkMode
GetWindowOrgEx
GetWindowOrgEx
CreateFontIndirectA
CreateSolidBrush
CreateCompatibleDC
GetCurrentObject
CreateCompatibleDC
GetBkColor
CreateFontA
GetWindowOrgEx
CreateBitmap
Rectangle
GetPixel
SetWindowOrgEx
CreateFontIndirectA
GetWindowExtEx
CreateDIBitmap
CreateFontA
BitBlt
SetBkMode
RoundRect
GetWindowOrgEx
MoveToEx
GetPixel
GetBkMode
CreateCompatibleDC
RoundRect
GetPixel
CreateFontA
CreateDIBSection
SetWindowExtEx
GetBkMode
GetBkColor
LineTo

Sections

.text
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

65cecd6058d2a77f0441bfd3447c6b78

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

gdi32

Sections

.text Size: 32KB - Virtual size: 32KB

.rdata Size: 3KB - Virtual size: 4KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 32KB - Virtual size: 32KB

.rdata
Size: 3KB - Virtual size: 4KB

.rsrc
Size: 1024B - Virtual size: 4KB