JaffaCakes118_8af4acbd725e34fc289d81674ae0e844

Sharing

Copy URL

Twitter E-mail

General

Target

JaffaCakes118_8af4acbd725e34fc289d81674ae0e844
Size

76KB
MD5

8af4acbd725e34fc289d81674ae0e844
SHA1

280156c357b97055ca30f0a01ed359ed0db0f3e4
SHA256

3dc18a14696e3abaaadee89c32ff60a963be38e7491b4fef3e7ecd59b2cd05d7
SHA512

033f19e9aecf23f15e8594c3ffa1595000cc5c43116f700c04c774ea4f9d1db880701514a3d8a89b2cca2824f1a177aa0202439bd6a2290a0fef265232f305d9
SSDEEP

1536:TrleJBx2zq+5hRpfvK7DKYM7zuM9GEKjgMqBit7HAko8Uck86LSUOLbJE/C6Qt:PlyDKB7qMcEKNqcn7ySUO3+6T

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_8af4acbd725e34fc289d81674ae0e844

Files

JaffaCakes118_8af4acbd725e34fc289d81674ae0e844
.exe windows:4 windows x86 arch:x86

af9bd62c9222bf460ee035dddd51accf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

memset
memcpy
_CItanh
_CIatan2
strlen
fmod
fabs
ceil
malloc
floor
free
fseek
ftell
fread
fclose
memmove

kernel32

GetModuleHandleA
HeapCreate
HeapDestroy
ExitProcess
GetProcAddress
FreeLibrary
LoadLibraryA
TlsAlloc
HeapAlloc
TlsSetValue
GlobalAlloc
GlobalFree
GetVersionExA
HeapFree
EnterCriticalSection
HeapReAlloc
LeaveCriticalSection
InitializeCriticalSection
TlsGetValue
WaitForMultipleObjects
CloseHandle
GetCurrentThreadId
GetCurrentProcess
GetCurrentThread
DuplicateHandle
CreateSemaphoreA
CreateThread
ReleaseSemaphore

user32

CallWindowProcA
GetForegroundWindow
ClipCursor
ShowCursor
GetWindowRect
SetCursorPos
DestroyWindow
InvalidateRect
ShowWindow
GetDC
ReleaseDC
DrawIconEx
FillRect
DestroyIcon
BeginPaint
EndPaint
DefWindowProcA
LoadIconA
RegisterClassExA
CreateWindowExA

gdi32

GetCurrentObject
GetTextAlign
GetTextColor
GetBkMode
GetBkColor
GetROP2
EndPage
StartPage
SelectObject
SetTextAlign
SetBkMode
SetBkColor
SetROP2
DeleteDC
GetDeviceCaps
StartDocA
SetTextColor
CreateSolidBrush
DeleteObject
CreatePen
SetPixelV
Rectangle
RoundRect
Ellipse
GetStockObject
GetObjectA
SelectPalette
RealizePalette
GetDIBits
GetObjectType
CreateCompatibleDC
SetStretchBltMode
StretchDIBits
BitBlt
StretchBlt
MoveToEx
TextOutA
CreateFontIndirectA
GetPixel
ExtFloodFill
LineTo
GetTextExtentPoint32A
GetTextMetricsA
CreateCompatibleBitmap
CreateDIBSection
CreateBitmap
SetPixel

comdlg32

PrintDlgA

winmm

timeEndPeriod

Sections

.code
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.teXT
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 881B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

af9bd62c9222bf460ee035dddd51accf

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

gdi32

comdlg32

winmm

Sections

.code Size: 10KB - Virtual size: 9KB

.teXT Size: 20KB - Virtual size: 20KB

.rdata Size: 1024B - Virtual size: 881B

.data Size: 3KB - Virtual size: 5KB

.rsrc Size: 4KB - Virtual size: 4KB

.code
Size: 10KB - Virtual size: 9KB

.teXT
Size: 20KB - Virtual size: 20KB

.rdata
Size: 1024B - Virtual size: 881B

.data
Size: 3KB - Virtual size: 5KB

.rsrc
Size: 4KB - Virtual size: 4KB