e8ea49505079cad08b7529fdc3cdb30e_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

e8ea49505079cad08b7529fdc3cdb30e_JaffaCakes118
Size

582KB
MD5

e8ea49505079cad08b7529fdc3cdb30e
SHA1

2fc4ae28cdc8c6b4b5d7553428e5d0e6c3f68848
SHA256

fc51a5f57f82929dbc6be215691121acdc4a34b0c6430fe444cec65299901059
SHA512

ce64b7c33edc893b2ebae18218756ad842e6e71905b2d43e288195125c57f34494ec425cc459c0412a1942bce0f975806da3811c1e668fd0f81943be77afa91f
SSDEEP

12288:i1qteEc9mdm4sYC+SFhcoIqsjwO7wLz1ha5tY0A4VrdSDd+csbiNwomzjmLnr:beEQdYlSPVIqsjT2J0A41uYFbOw5jQr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e8ea49505079cad08b7529fdc3cdb30e_JaffaCakes118

Files

e8ea49505079cad08b7529fdc3cdb30e_JaffaCakes118
.exe windows:5 windows x86 arch:x86

a38f92b5856e98bd36815be083353b00

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapReAlloc
HeapSize
GetStringTypeW
GetSystemTimeAsFileTime
GetTickCount
QueryPerformanceCounter
HeapCreate
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameW
MultiByteToWideChar
LCMapStringW
GetConsoleMode
GetConsoleCP
WideCharToMultiByte
WriteFile
ExitProcess
Sleep
DeleteCriticalSection
GetFileType
InitializeCriticalSectionAndSpinCount
SetHandleCount
VirtualQuery
GetCurrentProcess
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
IsValidCodePage
GetOEMCP
GetACP
InterlockedDecrement
InterlockedIncrement
GetCPInfo
HeapFree
HeapAlloc
IsProcessorFeaturePresent
DecodePointer
EncodePointer
GetStartupInfoW
HeapSetInformation
GetCommandLineA
LeaveCriticalSection
EnterCriticalSection
RtlUnwind
FlushFileBuffers
SetStdHandle
SetFilePointer
WriteConsoleW
ReadFile
CreateFileW
SetEndOfFile
GetProcessHeap
MulDiv
CreateFileA
GetFileTime
FileTimeToSystemTime
FindFirstFileA
FindNextFileA
FindClose
FindFirstChangeNotificationA
WaitForSingleObject
FindCloseChangeNotification
GlobalAlloc
GetCurrentThreadId
LoadLibraryW
GetProcAddress
GetStdHandle
FindResourceA
LoadResource
LockResource
FreeResource
GetModuleHandleW
SizeofResource
GetFileAttributesA
lstrcpyA
GlobalLock
SetLastError
CreateToolhelp32Snapshot
Thread32First
Thread32Next
CloseHandle
GetCurrentProcessId
OpenProcess
RaiseException
LocalFree
GetLastError
GetModuleFileNameA
GetModuleHandleA
IsDebuggerPresent

user32

ReleaseDC
SendDlgItemMessageA
GetSysColor
HideCaret
CallWindowProcA
GetClientRect
MapWindowPoints
GetScrollPos
GetDialogBaseUnits
IsWindowEnabled
GetFocus
DrawStateA
DrawTextExA
DrawFocusRect
GetWindowTextLengthA
DrawTextA
PtInRect
SetCapture
GetSystemMetrics
GetWindowThreadProcessId
AttachThreadInput
PostMessageA
FindWindowA
SetForegroundWindow
SetFocus
GetWindowTextA
LoadIconA
LoadCursorA
CreateWindowExA
UpdateWindow
LoadImageA
DestroyIcon
GetMenu
MessageBoxA
GetMenuItemInfoA
PeekMessageA
TranslateMessage
DispatchMessageA
SetCursorPos
GetWindowRect
LookupIconIdFromDirectory
CreateIconFromResource
WindowFromDC
InvalidateRect
GetMessageA
DestroyWindow
ClientToScreen
BeginPaint
EndPaint
ReleaseCapture
EnumDisplayMonitors
GetWindowDC
SetRect
GetWindowLongA
AdjustWindowRect
GetUpdateRect
GetDlgItem
SendMessageA
GetDC
IsWindow
ShowWindow
SetWindowPos
EnableWindow
DefWindowProcA
PostQuitMessage
FindWindowExA
WaitForInputIdle

gdi32

GetDeviceCaps
CreateFontA
CreateSolidBrush
CreateCompatibleDC
SelectObject
SelectClipRgn
SelectPalette
RealizePalette
GetDCOrgEx
DeleteDC
SetTextColor
SetBkColor
GetTextMetricsA
ExtTextOutW
GetObjectA
CreateCompatibleBitmap
BitBlt
GetBkColor
GetStockObject
CreateDIBSection
ExcludeClipRect
CreatePen
Rectangle
GetDIBits
CreateDIBitmap
GetDIBColorTable
CreateBitmap
SetDIBColorTable
GetCurrentObject
GetPaletteEntries
DeleteObject
SetTextAlign
ChoosePixelFormat
SetPixelFormat
CreateRectRgnIndirect

comdlg32

GetSaveFileNameW
GetOpenFileNameA
CommDlgExtendedError

advapi32

RegOpenKeyA
RegCloseKey
RegSetValueA
GetUserNameW
CredMarshalCredentialA
CredWriteDomainCredentialsW
CredGetSessionTypes

shell32

ShellExecuteExA

ole32

CLSIDFromString
CoRegisterClassObject
CreateFileMoniker

oleaut32

SafeArrayPutElement
SafeArrayDestroy
SafeArrayCreateVector
LoadTypeLibEx
SysAllocString
VariantClear

msacm32

acmFormatSuggest
acmFormatDetailsW

shlwapi

StrTrimA

comctl32

ImageList_GetIconSize
ImageList_Draw
ImageList_ReplaceIcon

rpcrt4

UuidCreate
UuidToStringA
RpcStringFreeA

opengl32

wglGetCurrentDC
wglCreateContext
glClearColor
glShadeModel

setupapi

SetupDiDestroyDeviceInfoList
SetupDiSetClassInstallParamsA
SetupDiEnumDeviceInfo
SetupDiGetClassDevsA
SetupDiCallClassInstaller

Sections

.text
Size: 113KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 420KB - Virtual size: 419KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a38f92b5856e98bd36815be083353b00

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

msacm32

shlwapi

comctl32

rpcrt4

opengl32

setupapi

Sections

.text Size: 113KB - Virtual size: 112KB

.rdata Size: 37KB - Virtual size: 37KB

.data Size: 10KB - Virtual size: 18KB

.rsrc Size: 420KB - Virtual size: 419KB

.text
Size: 113KB - Virtual size: 112KB

.rdata
Size: 37KB - Virtual size: 37KB

.data
Size: 10KB - Virtual size: 18KB

.rsrc
Size: 420KB - Virtual size: 419KB