dfaff61cc52fd8046155a25223c445d7_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

dfaff61cc52fd8046155a25223c445d7_JaffaCakes118
Size

158KB
MD5

dfaff61cc52fd8046155a25223c445d7
SHA1

c21d9d718a42e3f1714da040967996a29dbc2fff
SHA256

fde118339d2df0a5ce48cd13eb7d352241530ab209d98527175e62549b2149b2
SHA512

58a8ca7dadb7c6fee9de8be91fa0d97740d6ff49caba96dd4d5580602ff46a48d5885ba6d5db1d5a6b0f4290f184c95cc227039a4aaf0b83e23eaafb3cfa8015
SSDEEP

3072:qc9iaVVscs9CVQ/6OPSINZLSGu9XoEKfUeRv1QqSOXCaj2L9rKZVaHUZK2TeuLt4:N9igscs9nNVuMceDQ9GsK3yUeOW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dfaff61cc52fd8046155a25223c445d7_JaffaCakes118

Files

dfaff61cc52fd8046155a25223c445d7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b23c56463fdf385246493ff8b4bbe31b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

GetDlgItemTextW
RegisterClassExW
TranslateMessage
DestroyWindow
SetCapture
SetWindowTextW
SetWindowPos
SystemParametersInfoW
GetClassInfoExW
GetWindowInfo
GetDC
GetParent
SetDlgItemTextW
GetWindow
MessageBoxW
MapWindowPoints
GetClientRect
PeekMessageW
GetWindowTextLengthW
CreateWindowExW
EndPaint
GetWindowRect
GetAncestor
BeginPaint
DispatchMessageW
LoadCursorW
EndDialog

kernel32

LoadLibraryA
GetVersion
GetACP
GetCurrentThreadId
GetDriveTypeW
GetTickCount
LCMapStringA
lstrcpynW
LeaveCriticalSection
FindResourceW
GetCurrentProcess
SetUnhandledExceptionFilter
VirtualFree
lstrcmpA
IsProcessorFeaturePresent
GetStartupInfoA
GetConsoleOutputCP
WritePrivateProfileSectionW
WriteConsoleW
CheckRemoteDebuggerPresent
SetStdHandle
VirtualAlloc
CopyFileW
SetLastError
lstrlenA
LocalAlloc
RaiseException
HeapCreate
InterlockedCompareExchange
CreateFileA
EnumResourceTypesW
TlsSetValue
LCMapStringW
TlsGetValue
TlsFree
LocalFree
CreateSemaphoreW
GetStringTypeA
HeapDestroy
GetSystemTimeAsFileTime
GetCurrentProcessId
GetConsoleMode
CreateFileMappingW
SetFilePointer
GetStringTypeW
SizeofResource
WriteConsoleA
GetOEMCP
MulDiv
Sleep
InitializeCriticalSection
QueryPerformanceCounter
LoadResource
LockResource
WideCharToMultiByte
WaitForSingleObject
FlushFileBuffers
GetLocaleInfoA
GetThreadLocale
FlushInstructionCache
GetConsoleCP
TlsAlloc
HeapSize
InterlockedExchange
IsDebuggerPresent
GetCPInfo
GetFileType

winspool.drv

DocumentPropertiesW

Sections

.text
Size: 108KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.isete
Size: 1024B - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b23c56463fdf385246493ff8b4bbe31b

Headers

File Characteristics

Imports

user32

kernel32

winspool.drv

Sections

.text Size: 108KB - Virtual size: 108KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 45KB - Virtual size: 45KB

.isete Size: 1024B - Virtual size: 96KB

.text
Size: 108KB - Virtual size: 108KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 45KB - Virtual size: 45KB

.isete
Size: 1024B - Virtual size: 96KB