537cb8cbf8e943efa616e30b25e6c01e_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

537cb8cbf8e943efa616e30b25e6c01e_JaffaCakes118
Size

243KB
MD5

537cb8cbf8e943efa616e30b25e6c01e
SHA1

c63ac4378e781d9a175d02720761ea20791d8b9a
SHA256

1edd81c442c5a060715761ea6d10a88261c2016e93cdbba842d693285c1a1525
SHA512

472288a874da378df7cad4897fcc275bae34b8fabce21a7db24372484469dfe32e9a31dd00f37be9c17475dad499f6670a0a527eabda4db667041998cfb961f8
SSDEEP

6144:SXEmunbBMyM0LbLGr04faLTqpboZo3H5dWLd3myMafwckDtu:siVMEpTEbIaqLdRqDtu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
537cb8cbf8e943efa616e30b25e6c01e_JaffaCakes118

Files

537cb8cbf8e943efa616e30b25e6c01e_JaffaCakes118
.exe windows:5 windows x86 arch:x86

252c3f619da97830b7f40be67da66726

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

closesocket
WSACleanup

kernel32

GetCPInfo
HeapSize
HeapReAlloc
VirtualAlloc
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
VirtualFree
HeapCreate
GetFileType
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
GetStdHandle
WriteFile
RtlUnwind
EnterCriticalSection
GetACP
DeleteCriticalSection
WideCharToMultiByte
SetUnhandledExceptionFilter
UnhandledExceptionFilter
InterlockedDecrement
GetCurrentThreadId
SetLastError
InterlockedIncrement
TlsFree
TlsSetValue
TlsAlloc
GetModuleHandleW
RaiseException
HeapAlloc
HeapFree
GetStartupInfoA
GetSystemTimeAsFileTime
GetOEMCP
IsValidCodePage
MultiByteToWideChar
SetEnvironmentVariableA
InitializeCriticalSectionAndSpinCount
GetLocaleInfoA
GetStringTypeA
GetStringTypeW
LCMapStringA
lstrlenA
Toolhelp32ReadProcessMemory
FlushFileBuffers
LoadLibraryA
FreeUserPhysicalPages
TransmitCommChar
CreateFileMappingW
GetModuleFileNameA
IsBadStringPtrW
CompareStringA
IsBadCodePtr
CreateMutexA
GetLastError
GetAtomNameW
FindNextChangeNotification
FindResourceW
GetCommandLineA
FreeResource
IsBadWritePtr
DebugActiveProcess
GetCalendarInfoA
ReadProcessMemory
ConvertDefaultLocale
GetModuleFileNameW
lstrlenW
FreeEnvironmentStringsW
WriteProcessMemory
FindNextVolumeMountPointW
DisableThreadLibraryCalls
IsBadHugeWritePtr
GenerateConsoleCtrlEvent
GetCurrentProcess
IsDebuggerPresent
FreeEnvironmentStringsA
GetModuleHandleA
FindResourceA
FlushInstructionCache
FindResourceExA
lstrcmpA
lstrcatA
lstrcmpiA
TerminateThread
Sleep
CompareStringW
CreateFileW
TlsGetValue
CreateFiberEx
AddAtomW
IsDBCSLeadByte
lstrcpyA
CopyFileExW
GetProcAddress
FlushConsoleInputBuffer
AssignProcessToJobObject
TerminateProcess
ExitProcess
LCMapStringW
LeaveCriticalSection

user32

DlgDirListComboBoxA
ShowWindow
SwapMouseButton
VkKeyScanA
WindowFromDC
ExcludeUpdateRgn
SetWindowTextA
ValidateRect
GetClipboardData
SwitchDesktop
GetAltTabInfoA
DestroyWindow
ShowScrollBar
SystemParametersInfoW
DestroyMenu
TrackMouseEvent
SetWindowsHookA
GetAncestor
MessageBoxW
GetCaretBlinkTime
ShowWindowAsync
UnhookWinEvent
FlashWindowEx
SetWindowsHookExW
UnregisterHotKey
DrawFocusRect
ArrangeIconicWindows
DlgDirListComboBoxW
ActivateKeyboardLayout
UnloadKeyboardLayout
EndDeferWindowPos
ShowCaret
DrawAnimatedRects
DlgDirListA
UpdateLayeredWindow
DialogBoxParamA
SystemParametersInfoA
GetClassWord
GetCaretPos
DlgDirListW
AnyPopup
EndDialog
DestroyCaret
SetWindowsHookExA
VkKeyScanExW
ShowCursor
DestroyCursor
EndPaint
GetActiveWindow
MessageBoxA
ToAsciiEx
DrawIcon
EndMenu
DrawCaption
TabbedTextOutW

gdi32

StrokePath
SetStretchBltMode
GetTextCharacterExtra
SetPaletteEntries
SelectClipRgn
CreateHalftonePalette
SetMapperFlags
ResetDCW
GetStockObject
RemoveFontResourceExA
SetMiterLimit
SetICMMode
GetLayout
PlayMetaFile
GetKerningPairsA
SetWorldTransform
OffsetRgn
OffsetViewportOrgEx
CombineRgn
GetObjectType
PlgBlt
CreatePolyPolygonRgn
StartDocW
SetROP2
RemoveFontResourceA
SetDIBitsToDevice
WidenPath
IntersectClipRect
RestoreDC
CreateDiscardableBitmap
GetMiterLimit
ColorMatchToTarget
SetDeviceGammaRamp
BeginPath
CreatePatternBrush
ColorCorrectPalette
SetRectRgn
SetMetaRgn
CreateEllipticRgn
GetNearestPaletteIndex
CancelDC
SetTextJustification
UpdateColors
GetTextColor
GetViewportOrgEx
ScaleWindowExtEx
SetDCBrushColor
CreateHatchBrush
SelectPalette
MoveToEx
RemoveFontMemResourceEx
GetTextAlign
GetRasterizerCaps
CreatePen
GetTextCharsetInfo
RoundRect
PlayEnhMetaFile
CreateEnhMetaFileW
SetPixel
GetPath
SetDCPenColor
PolyBezier
GetWorldTransform
SetSystemPaletteUse
GetTextCharset
UnrealizeObject
Pie
GetPixelFormat
CopyEnhMetaFileW
GetTextMetricsW
SetTextAlign
AbortDoc
SetGraphicsMode
SetICMProfileW
PathToRegion
CloseFigure
AbortPath

ole32

CoInitialize

Sections

.text
Size: 107KB - Virtual size: 107KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 89KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

252c3f619da97830b7f40be67da66726

Headers

DLL Characteristics

File Characteristics

Imports

ws2_32

kernel32

user32

gdi32

ole32

Sections

.text Size: 107KB - Virtual size: 107KB

.rdata Size: 40KB - Virtual size: 40KB

.data Size: 5KB - Virtual size: 11KB

.rsrc Size: 89KB - Virtual size: 88KB

.text
Size: 107KB - Virtual size: 107KB

.rdata
Size: 40KB - Virtual size: 40KB

.data
Size: 5KB - Virtual size: 11KB

.rsrc
Size: 89KB - Virtual size: 88KB