40a7f0a4ddac9401ca63a7d8cb0bf9ef_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

40a7f0a4ddac9401ca63a7d8cb0bf9ef_JaffaCakes118
Size

167KB
MD5

40a7f0a4ddac9401ca63a7d8cb0bf9ef
SHA1

c0d38abad72b6563960843da493ca9e29e120a9b
SHA256

9bfa575d88f918eabb3cc608ffb89a0d35a659c449415f33194c28589c2093b0
SHA512

81f00e8e837e36ff5eb3f2c188aa5c97320b0f95a88443a1d3d595c60c246624c532b12de67af2ec3378f6bfc845b3a49bfb4110b25fa07711706176ba0d5458
SSDEEP

3072:Bz6l9xj5rJeN+UWxWBI1W0xT0SECp1cwdWP3gUeQJ1c1QXFxp:9gFe6AIX0S9PcwYMK1c1Qp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
40a7f0a4ddac9401ca63a7d8cb0bf9ef_JaffaCakes118

Files

40a7f0a4ddac9401ca63a7d8cb0bf9ef_JaffaCakes118
.exe windows:5 windows x86 arch:x86

81d5a0be2aabb92620e73657c7ad418f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetSystemMetrics
FindWindowExW
SetPropA
SetFocus
ExitWindowsEx
DdeGetData
IsClipboardFormatAvailable
IsDialogMessageA
EndPaint
GetKBCodePage
CreateDialogIndirectParamA
GetCursorPos

wininet

InternetSetOptionW
GetUrlCacheEntryInfoW
InternetSetFilePointer
InternetConnectW
FindFirstUrlCacheEntryExW
DeleteUrlCacheGroup

opengl32

glColor4ubv
glColor4usv
glNormal3d
glNormal3iv
glTexCoord1dv
glTexEnvfv
glPixelTransferf
glIndexs

kernel32

GetFileType
CreateFileW
CloseHandle
HeapSize
WriteConsoleW
SetStdHandle
IsProcessorFeaturePresent
GetStringTypeW
MultiByteToWideChar
LCMapStringW
FlushFileBuffers
LoadLibraryW
GetConsoleMode
GetConsoleCP
SetFilePointer
RtlUnwind
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
GetNumberOfConsoleInputEvents
MapViewOfFile
CreateProcessW
DeleteAtom
GetBinaryTypeA
ProcessIdToSessionId
GetSystemWindowsDirectoryA
GetLastError
HeapFree
HeapReAlloc
HeapAlloc
GetCommandLineA
HeapSetInformation
GetStartupInfoW
EnterCriticalSection
LeaveCriticalSection
DecodePointer
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
EncodePointer
TerminateProcess
GetCurrentProcess
SetHandleCount
GetStdHandle
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
HeapCreate
GetProcAddress
GetModuleHandleW
ExitProcess
WriteFile
GetModuleFileNameW
GetModuleFileNameA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
Sleep

Sections

.text
Size: 58KB - Virtual size: 58KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 91KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

81d5a0be2aabb92620e73657c7ad418f

Headers

DLL Characteristics

File Characteristics

Imports

user32

wininet

opengl32

kernel32

Sections

.text Size: 58KB - Virtual size: 58KB

.rdata Size: 13KB - Virtual size: 12KB

.data Size: 3KB - Virtual size: 11KB

.rsrc Size: 91KB - Virtual size: 90KB

.text
Size: 58KB - Virtual size: 58KB

.rdata
Size: 13KB - Virtual size: 12KB

.data
Size: 3KB - Virtual size: 11KB

.rsrc
Size: 91KB - Virtual size: 90KB