e617c9f5f92d7ee0393ecc6fc46e5b1b_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

e617c9f5f92d7ee0393ecc6fc46e5b1b_JaffaCakes118
Size

85KB
MD5

e617c9f5f92d7ee0393ecc6fc46e5b1b
SHA1

102652f882e765bc0d12bf31633c6b2d01de19f0
SHA256

8d6f3b91e29e22808e3adac6da8878c54ee35acf21a494a7e25a9d0a9c2378bf
SHA512

847a8960f59d50e3ef4c739df8d7e3dc7a526fb7b615246c7f9b33d069024c3e38657d4cfa96fab2e83674c5a703f14dcf43c9005db3d52aed183f2f05d7771e
SSDEEP

1536:PUM5Fvgo+8rL8gGdI2zVKwGxBMzOFcuv3Z:PptVLWI2J/J3uv3Z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e617c9f5f92d7ee0393ecc6fc46e5b1b_JaffaCakes118

Files

e617c9f5f92d7ee0393ecc6fc46e5b1b_JaffaCakes118
.exe windows:1 windows x86 arch:x86

79ac5a277ff46f5b8b0fbd86346d141d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

RegisterClassA
DefDlgProcA
WindowFromPoint
MessageBoxA
KillTimer
LoadStringA
ReleaseCapture
SystemParametersInfoA
ScreenToClient
SetMenuItemInfoA
CopyRect
IsZoomed
GetCapture
InflateRect
GetPropA
GetWindowTextA
CreatePopupMenu
SetWindowPos
EnumChildWindows
DestroyIcon
CreateMenu
AppendMenuA
PostMessageA
IsDialogMessageA
GetWindowRect
GetMenu
DispatchMessageA
PostQuitMessage
GetFocus
GetSubMenu
CloseClipboard
GetSystemMetrics
GetSysColorBrush
DefMDIChildProcA
LoadMenuA
GetWindowThreadProcessId
GetClientRect
SendMessageA
EnumWindows
EndPaint
InsertMenuA
LoadIconA
GetClassLongA
TrackPopupMenuEx
BeginPaint
EndDialog
DestroyWindow
ModifyMenuA
IsWindowVisible
MapWindowPoints
GetDlgCtrlID
SetPropA
SetCursor
GetWindowDC
FillRect
DrawEdge
SetTimer
LoadImageA
ShowWindowAsync
IsIconic
SetDlgItemTextA
GetUpdateRgn

kernel32

GetLastError
GetThreadContext
ExitProcess
TlsFree
GetFileTime
ResetEvent
GetStringTypeW
GetModuleHandleA
FileTimeToSystemTime
GetVersion
GetStringTypeA
ReadFile
FreeEnvironmentStringsA
GetCurrentProcessId
MultiByteToWideChar
TerminateThread
GetTickCount
GetEnvironmentVariableA
LoadResource
lstrcpynA
GetExitCodeThread
CreateProcessA
GetCurrentProcess
UnhandledExceptionFilter
SetEvent
GetCPInfo
SetUnhandledExceptionFilter
CreateThread
GetStartupInfoA
FindResourceA
FindFirstFileA
SetThreadAffinityMask
GetTimeFormatA
GetCurrentThread
ExitThread
SetStdHandle
lstrcatA
FormatMessageA
QueryPerformanceFrequency
VirtualAlloc
GetFileType
SizeofResource
MapViewOfFile
GetEnvironmentStrings
IsBadStringPtrA
CreateEventA
GetProcessHeap
CloseHandle
GetProcessWorkingSetSize
WideCharToMultiByte
GetComputerNameW
LocalFree
GetNumberFormatA
FindClose
GetSystemInfo
RtlUnwind
HeapFree
lstrlenA
GetACP
FileTimeToLocalFileTime
LoadLibraryW
Module32First
TlsSetValue
GetFileAttributesA
WriteConsoleW
PulseEvent
GetProcAddress

msvcrt

isgraph
_cputws
iswctype
_safe_fdivr
_strupr
strxfrm
_aligned_offset_malloc
_mbsupr
__getmainargs
memcpy
_ismbcprint
_wunlink
_wcsicmp
_putch
_wperror
floor
strrchr
fclose
__p__commode
_mbcjistojms
toupper
_findclose
_wfopen
_adjust_fdiv
_adj_fprem
_acmdln
_msize
_adj_fdiv_m32i
strlen
fgets
_execlpe
_winver
fwscanf
_sopen
system
_wtof
_getch
atan
_putwch
wcschr
__setusermatherr
_rmdir
_fstat64
_mbsnbcoll
_cprintf
exit
_getmbcp
_controlfp
strchr
__set_app_type
_wsopen
_wcsrev
_mbscmp
_except_handler3
fscanf
_splitpath
wcscpy
_mbscpy
getenv
_isatty
_heapchk
memset
islower
_exit
_adj_fdiv_m64
_winmajor
_XcptFilter
_chmod
wcscat
__p__fmode
_initterm
sinh
_ismbbkprint
_wcstoi64
perror
_spawnl
_strrev
_mbslen
qsort
wcscspn

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 63KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

79ac5a277ff46f5b8b0fbd86346d141d

Headers

File Characteristics

Imports

user32

kernel32

msvcrt

Sections

.text Size: 20KB - Virtual size: 19KB

.rdata Size: 63KB - Virtual size: 62KB

.data Size: 512B - Virtual size: 4KB

.rsrc Size: 512B - Virtual size: 4B

.text
Size: 20KB - Virtual size: 19KB

.rdata
Size: 63KB - Virtual size: 62KB

.data
Size: 512B - Virtual size: 4KB

.rsrc
Size: 512B - Virtual size: 4B