eac9de824dd525be6fe5ecf0e46e90f6_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

eac9de824dd525be6fe5ecf0e46e90f6_JaffaCakes118
Size

177KB
MD5

eac9de824dd525be6fe5ecf0e46e90f6
SHA1

052dd575c5e17edfe7dd627c87d082f4868227d6
SHA256

b5bcc79a7899a7d029b520f688129e445de66788bed2e82f7b1ef5f3303f7f41
SHA512

6bec58c5acaa9b0f8a243d7f6e3d4452d8045f59dd7c52e24d6d41280c21bb00934ef16075c713ce6f0ef6535b4e6833bef271f8fb866214302ffeb3d1b09571
SSDEEP

3072:xOVEDH7Mn9qnL6Mb/DE+nE3CEhjBi7OxDYqMTHkSzG3:sVKgnQnL6eDPmCEBBixHTHfG3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
eac9de824dd525be6fe5ecf0e46e90f6_JaffaCakes118

Files

eac9de824dd525be6fe5ecf0e46e90f6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1c6ccca3d2951018671d46f1b2af0eeb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetCursor
GetClassLongA
UpdateWindow
InvalidateRect
SetFocus
ShowWindow
GetMessageA
wsprintfA
BeginPaint
GetWindowRect
DefWindowProcA
CreateWindowExA
MoveWindow
GetWindowLongA
PeekMessageA
DestroyWindow
MessageBoxA
CallWindowProcA
GetClientRect
EndPaint
ScreenToClient
IsWindow
OffsetRect
GetKeyState
GetFocus
ReleaseCapture
DispatchMessageA
SetWindowTextA
RegisterClassA
SendMessageA
TranslateMessage
LoadCursorA
SubtractRect
LoadIconA
SetWindowLongA
wvsprintfA
SetCapture

gdi32

CreateDIBSection
SelectObject
DeleteObject
BitBlt
SetStretchBltMode
StretchDIBits
CombineRgn
GetCurrentObject
SetDIBitsToDevice
DeleteDC
GetObjectA
CreateCompatibleDC
GetStockObject
CreateRectRgn
SetDIBColorTable
FillRgn
StretchBlt

comctl32

CreateToolbarEx

avicap32

capCreateCaptureWindowA
capGetDriverDescriptionA

msvfw32

ICOpen
ICSendMessage
ICDecompress
ICClose

avifil32

AVIFileOpenA
AVIFileRelease
AVIFileGetStream
AVIStreamGetFrame
AVIFileCreateStreamA
AVIStreamRelease
AVIStreamGetFrameOpen
AVIFileInit
AVIStreamWrite
AVIStreamInfoA
AVISaveOptions
AVIStreamGetFrameClose
AVIStreamSetFormat
AVIMakeCompressedStream

kernel32

GlobalSize
QueryDosDeviceW
CreateFileMappingA
DisableThreadLibraryCalls
GetProcessId
WriteFile
MapViewOfFile
lstrlenA
ReadFile
CreateFileA
SetFilePointer
CloseHandle
LocalFree
EnumResourceTypesA
ExitProcess
UnmapViewOfFile
GetFileSize
GlobalAlloc
LocalAlloc
ProcessIdToSessionId
Sleep
GlobalFree

Sections

.text
Size: 107KB - Virtual size: 107KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1024B - Virtual size: 240KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1c6ccca3d2951018671d46f1b2af0eeb

Headers

File Characteristics

Imports

user32

gdi32

comctl32

avicap32

msvfw32

avifil32

kernel32

Sections

.text Size: 107KB - Virtual size: 107KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 64KB - Virtual size: 64KB

.tls Size: 1024B - Virtual size: 240KB

.text
Size: 107KB - Virtual size: 107KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 64KB - Virtual size: 64KB

.tls
Size: 1024B - Virtual size: 240KB