445ff31f022030fae834df6a8c648f5a_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

445ff31f022030fae834df6a8c648f5a_JaffaCakes118
Size

516KB
MD5

445ff31f022030fae834df6a8c648f5a
SHA1

6d34d6cf2f02f6b24780e59fa478d5493599de1d
SHA256

e9f92efe5d23019f8b16ea11958ba95956fcf3b3974b720dd320f8d311ccd590
SHA512

a9b292ebc1ee2d35eec2c8c9b7e54cbaea4036faaf654d83ea472a927deaab8abf946fbf2bb47c20f51130c685c001f46380b28b0d20ae610943980c808fa3ea
SSDEEP

6144:q/s/koVj1lgLpFR5PZKHa+WVDQpjsAMkYk39Im0jAUEZ0pK9ZukTJB9JFjupZjIV:qUTV6LPM4Qpngj+Z0IM+jJ6Ie/W

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
445ff31f022030fae834df6a8c648f5a_JaffaCakes118

Files

445ff31f022030fae834df6a8c648f5a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

66032323c0f516be265641b8f863252e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
GetLastError
GetTickCount
InterlockedExchange
DeleteCriticalSection
GetCurrentProcess
lstrcmpiW
CreateFileW
VirtualAlloc
InitializeCriticalSection
UnhandledExceptionFilter
GetLastError
CloseHandle
GetTickCount
InterlockedCompareExchange
GetCurrentProcessId
CreateThread
SetLastError
QueryPerformanceCounter
GetSystemTimeAsFileTime
CreateFileW
GetTickCount
InterlockedExchange
LocalFree
GetModuleFileNameA
GetProcAddress
GetModuleHandleA
VirtualAlloc
InterlockedCompareExchange
InterlockedExchange
GetModuleFileNameA
InterlockedCompareExchange
GetModuleHandleW
HeapDestroy
InterlockedCompareExchange
LocalFree
UnhandledExceptionFilter
lstrcmpiW
GetProcAddress
InterlockedDecrement
EnterCriticalSection
HeapFree
GetProcessHeap
GetCurrentThreadId
VirtualProtect
GetVersionExA
LocalAlloc
GetModuleFileNameW
GetCurrentThreadId
GetProcessHeap
LoadLibraryW
GetProcAddress
GetModuleHandleA
LocalFree
GetCurrentProcessId
InterlockedDecrement
CreateThread
VirtualProtect
UnhandledExceptionFilter
GetModuleHandleA
GetModuleHandleW
GetCurrentThreadId
VirtualProtect
VirtualProtect
GetProcAddress
DeleteCriticalSection
GetTickCount

gdi32

MoveToEx
CombineRgn
SelectObject
GetCurrentObject
SelectObject
SetBkColor
GetWindowExtEx
Rectangle
SetWindowOrgEx
GetBkMode
SetTextColor
BitBlt
BitBlt
Polygon
Rectangle
CreateRectRgn
MoveToEx
GetPixel
SetPixel
Polygon
RoundRect
CreateCompatibleDC
CreateBitmap
CreateSolidBrush
RoundRect
CreateDIBSection
GetBkMode
SetTextColor
SetPixel
CombineRgn
SetBkMode
SetWindowExtEx
PatBlt
SetBkMode
Ellipse
StretchBlt
PatBlt
GetCurrentObject
GetCurrentObject
CreateBitmapIndirect
Rectangle
CreateDIBitmap
MoveToEx
GetBkColor
SetWindowOrgEx
SetBrushOrgEx
CreateFontIndirectA
CreateDIBSection
GetBkMode
GetWindowOrgEx
LineTo
GetBkColor
GetBrushOrgEx
SetTextColor
Polygon
CreateSolidBrush
SetBkColor
SelectObject
SetBkMode
Polygon
GetPixel
SetWindowExtEx
SetBrushOrgEx

user32

SetCursor
GetParent
SetWindowPos
IsDlgButtonChecked
EnableWindow
ReleaseDC
SetTimer
EnableWindow
PostMessageW
SetWindowTextW
LoadIconW
DialogBoxParamW
SetCursor
GetClientRect
GetDlgItem
CreateWindowExW
SetForegroundWindow
InvalidateRect
DestroyWindow
LoadIconW
SetCursor
GetParent
CreateWindowExW
GetWindowLongW
GetSystemMetrics
SetWindowLongW
TranslateMessage
BeginPaint
CreateWindowExW
LoadIconW
GetDesktopWindow
SetWindowPos
ShowWindow
DialogBoxParamW
GetSystemMetrics
DefWindowProcW
GetDlgItem
KillTimer
DefWindowProcW
SetForegroundWindow
SendMessageW
LoadStringW
EndPaint
BeginPaint
DispatchMessageW
SetTimer
ReleaseDC
DefWindowProcW
DefWindowProcW
PostMessageW
PostMessageW
GetDC
DefWindowProcW
GetParent
MessageBoxW
EndDialog
BeginPaint
GetWindowLongW
GetDlgItem
ReleaseDC
BeginPaint
SetForegroundWindow
LoadIconW
GetFocus
SetWindowLongW
DispatchMessageW
DefWindowProcW

Sections

.text
Size: 499KB - Virtual size: 964KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

66032323c0f516be265641b8f863252e

Headers

File Characteristics

Imports

kernel32

gdi32

user32

Sections

.text Size: 499KB - Virtual size: 964KB

.data Size: 512B - Virtual size: 4KB

.rdata Size: 5KB - Virtual size: 8KB

.rsrc Size: 10KB - Virtual size: 12KB

.text
Size: 499KB - Virtual size: 964KB

.data
Size: 512B - Virtual size: 4KB

.rdata
Size: 5KB - Virtual size: 8KB

.rsrc
Size: 10KB - Virtual size: 12KB