465f4a0b58ad8516fd2840aa14ae913f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

465f4a0b58ad8516fd2840aa14ae913f_JaffaCakes118
Size

123KB
MD5

465f4a0b58ad8516fd2840aa14ae913f
SHA1

0975e82a82230beb6aa9683816b0538de29ac172
SHA256

b2f48a8d49291d1293e68ffb08e45c913355a701dc3e2b051ca0a08aeb9cb484
SHA512

16e80b0d3a3631da79b621d6d0f0d127ffefa52ca211f2e466659577e0ef7c17c4087dae4c0896b7454fdaba7f4fac1de8d3a0ad78ce543aad04c985983f55d8
SSDEEP

3072:jhIF+RD3nN9E6oVQWsmFfwbTRcjjVuWiXWyH4XO9BsCJE1Bl6diM2i:jmcrnN9EXbsmFRppxOUbjqiM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
465f4a0b58ad8516fd2840aa14ae913f_JaffaCakes118

Files

465f4a0b58ad8516fd2840aa14ae913f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

52032ce956aa925043666ca68e33f242

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

WaitMessage
GetKeyboardType
GetKeyboardState
DrawEdge
ShowScrollBar
GetActiveWindow
GetKeyboardLayout
GetFocus
DefFrameProcA
GetKeyNameTextA
IsMenu
SetScrollPos
UnregisterClassA
FillRect
GetCapture
CharNextA
GetTopWindow
CreatePopupMenu
OemToCharA
SetForegroundWindow
SetWindowPlacement
DefWindowProcA
DrawIconEx
OpenIcon
EndDialog
ReleaseDC
DrawTextA
CreateWindowExA
GetDesktopWindow
CreateIcon
MsgWaitForMultipleObjects
CharUpperBuffA
IsIconic
DrawMenuBar
ShowWindow
GetKeyboardLayoutList
TranslateMDISysAccel
IsChild
EnumThreadWindows
InvalidateRect
IntersectRect
ClientToScreen
SetClassLongA
GetMenu
CharLowerBuffA
EnumWindows
GetParent
LoadKeyboardLayoutA
SetCapture
GetDC
EmptyClipboard
FrameRect
IsWindowEnabled
SetScrollInfo
EnableMenuItem
IsWindowVisible
PeekMessageA
IsDialogMessageA
DispatchMessageA
CharUpperA
SetWindowLongA
ActivateKeyboardLayout
GetIconInfo
MoveWindow
RegisterWindowMessageA

gdi32

CreateBitmap
GetTextColor
LineTo
CreateDIBSection
GetTextAlign

comctl32

ImageList_Draw
ImageList_GetBkColor
ImageList_Add
ImageList_Create
ImageList_DrawEx
ImageList_Remove

kernel32

InitializeCriticalSection
EnumCalendarInfoA
WideCharToMultiByte
GetModuleHandleA
GetEnvironmentStrings
ReadFile
GetThreadLocale
GetVersionExA
GetLocalTime
SetFilePointer
lstrlenW
MulDiv
LocalAlloc
GetProcessHeap
EnterCriticalSection
CompareStringA
ExitProcess
GetCurrentThread
IsBadReadPtr
lstrcpynA
SetEndOfFile
GetStdHandle
GetFullPathNameA
GetDiskFreeSpaceA
FormatMessageA
GetCurrentProcessId
DeleteCriticalSection
DeleteFileA
GlobalDeleteAtom
SetErrorMode
GetModuleHandleW
GetCurrentProcess
FreeResource
GetACP
CreateEventA
GetFileSize
GetTickCount
GetStartupInfoA
GetStringTypeA
GlobalFindAtomA
GlobalAlloc
GetTempPathA
lstrcatA
VirtualAlloc
LockResource
GlobalAddAtomA
VirtualAllocEx
CreateFileA
lstrcmpA
LoadLibraryA
HeapFree
SetThreadLocale
GetFileType
GetDateFormatA
LocalReAlloc
GetLocaleInfoA
WriteFile
FindFirstFileA
MoveFileA
GetFileAttributesA
FreeLibrary
GetCurrentThreadId
ExitThread

Exports

Exports

_hqwhcv80

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 105KB - Virtual size: 237KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

52032ce956aa925043666ca68e33f242

Headers

File Characteristics

Imports

user32

gdi32

comctl32

kernel32

Exports

Exports

Sections

.text Size: 10KB - Virtual size: 10KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 105KB - Virtual size: 237KB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 10KB - Virtual size: 10KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 105KB - Virtual size: 237KB

.rsrc
Size: 2KB - Virtual size: 1KB