575160ab632ad2d1767109974abd16e1_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

575160ab632ad2d1767109974abd16e1_JaffaCakes118
Size

268KB
MD5

575160ab632ad2d1767109974abd16e1
SHA1

887a54ee09ed8ddedcc6f73648a9a830de519982
SHA256

dfd8d7d169724f1aeb68c260d9af911d28886d621702dd22edb1c99e69b9c495
SHA512

3d3004bac3f961911fac89c1bc025776f1cf84f5d76d629d5e8b8dbad9dbf262518a77649c6617302dbe75dfd4a996c7fc149a73fba57a0e4a91e3bcad2e8d3f
SSDEEP

6144:oU4k5vu90yrncdfyFM3qIBKqie69agNH8kA5:oUg93y6MaIQFe6agV8j

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
575160ab632ad2d1767109974abd16e1_JaffaCakes118

Files

575160ab632ad2d1767109974abd16e1_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a1a74f56d53d477166a8db527b2c1704

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

gdi32

GetBkColor
GetClipRgn
GetCurrentObject
GetDCBrushColor
GetDCPenColor
GetDeviceCaps
GetFontLanguageInfo
GetGraphicsMode
GetMapMode
GetMetaRgn
GetNearestColor
GetNearestPaletteIndex
GetObjectType
GetPixelFormat
GetPolyFillMode
GetRandomRgn
GetStretchBltMode
GetSystemPaletteUse
GetTextAlign
GetTextCharacterExtra
GetTextCharset
GetTextCharsetInfo
GetTextColor
SetPixel
SetTextCharacterExtra
UpdateColors

kernel32

CloseHandle
DeleteCriticalSection
DeleteFileA
EnterCriticalSection
FindResourceA
FreeLibrary
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetDriveTypeA
GetFileTime
GetFileType
GetLastError
GetModuleHandleA
GetModuleHandleW
GetProcAddress
GetProcessHeap
GetStartupInfoA
GetStdHandle
GetSystemTimeAsFileTime
GetTickCount
GetVersion
GlobalAlloc
GlobalFlags
GlobalHandle
GlobalSize
InitializeCriticalSection
IsDebuggerPresent
IsProcessorFeaturePresent
LeaveCriticalSection
LoadLibraryA
LoadResource
LocalFlags
LockResource
MoveFileA
QueryPerformanceCounter
SetFilePointer
SetUnhandledExceptionFilter
SizeofResource
Sleep
TerminateProcess
TlsGetValue
UnhandledExceptionFilter
VirtualProtect
VirtualQuery
WriteFile

msvcrt

__dllonexit
__getmainargs
__initenv
__lconv_init
__set_app_type
__setusermatherr
_acmdln
_amsg_exit
_beep
_cexit
_errno
_fgetchar
_filbuf
_fileno
_finite
_flsbuf
_fmode
_fpclass
_fputchar
_fsopen
_fullpath
_gcvt
_initterm
_iob
_isnan
_itoa
_itoa
_lock
_ltoa
_ltow
_memccpy
_memicmp
_nextafter
_onexit
_pclose
_putenv
_putenv
_putw
_putws
_stat
_strcmpi
_strdate
_strdup
_strerror
_strlwr
_strnset
_strnset
_strset
_strtime
_strupr
_strupr
_ultow
_unlink
_unlock
_vsnprintf
_vsnwprintf
_wasctime
_wcsncoll
_wcsnicoll
_wcsnset
_wfreopen
_wperror
_wstrdate
abort
atoi
calloc
clearerr
clock
exit
fclose
fflush
fgetc
fopen
fprintf
free
freopen
fscanf
fseek
ftell
fwrite
fwscanf
getchar
isalnum
islower
ispunct
isspace
iswcntrl
iswlower
localeconv
malloc
mblen
mbstowcs
memcmp
memmove
memset
mktime
memcpy
perror
putchar
rand
realloc
remove
rename
setbuf
setvbuf
signal
sprintf
srand
sscanf
strcat
strcmp
strcpy
strlen
strncat
strncmp
strstr
time
tmpnam
towlower
vfprintf

user32

CallWindowProcA
CheckDlgButton
EnableWindow
EndDialog
EndPaint
GetDialogBaseUnits
GetDlgItem
GetDlgItemInt
GetForegroundWindow
GetInputState
GetKeyboardType
GetMenu
GetMenuCheckMarkDimensions
GetMenuContextHelpId
GetMenuItemCount
GetMenuItemID
GetMenuState
GetPropA
GetQueueStatus
GetScrollPos
GetWindowContextHelpId
GetWindowDC
GetWindowLongA
IsWindowEnabled
IsWindowUnicode
MoveWindow
RemovePropA
SendMessageA
SetDlgItemTextA
SetFocus
ShowWindow
WindowFromDC

Sections

.text
Size: 232KB - Virtual size: 232KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.eh_fram
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 103KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 52B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a1a74f56d53d477166a8db527b2c1704

Headers

File Characteristics

Imports

gdi32

kernel32

msvcrt

user32

Sections

.text Size: 232KB - Virtual size: 232KB

.data Size: 18KB - Virtual size: 18KB

.rdata Size: 4KB - Virtual size: 4KB

.eh_fram Size: 4KB - Virtual size: 4KB

.bss Size: - Virtual size: 103KB

.idata Size: 6KB - Virtual size: 5KB

.CRT Size: 512B - Virtual size: 52B

.tls Size: 512B - Virtual size: 32B

.text
Size: 232KB - Virtual size: 232KB

.data
Size: 18KB - Virtual size: 18KB

.rdata
Size: 4KB - Virtual size: 4KB

.eh_fram
Size: 4KB - Virtual size: 4KB

.bss
Size: - Virtual size: 103KB

.idata
Size: 6KB - Virtual size: 5KB

.CRT
Size: 512B - Virtual size: 52B

.tls
Size: 512B - Virtual size: 32B