eb0806f1205269a100a8da1504fd04bc_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

eb0806f1205269a100a8da1504fd04bc_JaffaCakes118
Size

166KB
MD5

eb0806f1205269a100a8da1504fd04bc
SHA1

ca5a48f5878ea312c1d14a5d2cb83243c4462420
SHA256

ebf0a4e04add33d7240ffa2766a1f86fa95175ab582590d587289365d0310d72
SHA512

f39876b2a4d1440af41e822111490880e85828ba07a038ebfd6c4a635066fe2a6499d97f1dd9d3fe6d99133f7fe5cd62467db50a1345162bb6977e36ffe35daf
SSDEEP

3072:1vg9Wl4J/m/6mECMjjROMiWJPiTn1w2L/OHW0IgElTlTWP8R9G:EWl4dmSmECAOMpPsm27OHW0Ig8l08RE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
eb0806f1205269a100a8da1504fd04bc_JaffaCakes118

Files

eb0806f1205269a100a8da1504fd04bc_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3a0e0f2deafa4a10988669723185a979

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

gdi32

CreatePalette
CreateBrushIndirect
CreateFontIndirectA
GetCurrentPositionEx

ole32

CoTaskMemFree
MkParseDisplayName
CLSIDFromString
OleRun
CreateStreamOnHGlobal
CoCreateGuid
CoRevokeClassObject
CoUninitialize
GetHGlobalFromStream

version

GetFileVersionInfoA
VerFindFileA
VerInstallFileA

kernel32

GetEnvironmentStrings
VirtualAlloc
lstrlenA
GetDiskFreeSpaceA
GetDateFormatA
GetCurrentProcessId
GetCommandLineW

oleaut32

RegisterTypeLib
SysStringLen
VariantChangeType
GetErrorInfo
SafeArrayGetUBound

shlwapi

SHStrDupA
SHEnumValueA
SHDeleteKeyA
SHSetValueA
PathIsContentTypeA

msvcrt

clock
wcsncmp
rand
memcpy
malloc
srand
exit
wcstol
memset
atol
calloc
wcscspn

shell32

Shell_NotifyIconA
SHGetSpecialFolderLocation
DragQueryFileA
SHGetFolderPathA
SHGetDiskFreeSpaceA

user32

UnhookWindowsHookEx
IsDialogMessageW
DestroyIcon
DefWindowProcA
PeekMessageW
GetWindowTextA
GetForegroundWindow
GetDesktopWindow
GetPropA
GetCursor
DrawFrameControl
UpdateWindow
wsprintfA
DestroyCursor
CreateWindowExA
OffsetRect
GetKeyboardLayoutList
DispatchMessageA
IsRectEmpty
CharNextW
UnregisterClassA
DispatchMessageW
RegisterClipboardFormatA
GetWindowDC
CloseClipboard
WindowFromPoint
GetKeyState
GetWindow
GetKeyNameTextA
GetLastActivePopup
PostQuitMessage
CreateIcon
GetClassLongA
EnableScrollBar
GetWindowTextLengthA
GetMessagePos
MoveWindow
GetMenuStringA
DrawAnimatedRects
ActivateKeyboardLayout
RegisterWindowMessageA
LoadBitmapA
DefMDIChildProcA
MessageBoxA
GetSysColorBrush
SetWindowsHookExA
EnumThreadWindows
DrawIcon
ScrollWindow
EmptyClipboard
GetMenuState
EnumWindows
SetMenuItemInfoA
MapVirtualKeyA
IsChild
ShowWindow
LoadCursorA
ClientToScreen
FillRect
GetWindowPlacement
EqualRect
GetTopWindow
InflateRect
LoadKeyboardLayoutA
RegisterClassA
GetKeyboardLayout
DrawMenuBar
GetWindowRect
ShowOwnedPopups
CallNextHookEx
GetClassInfoA
DestroyWindow
GetCapture
SetRect
FrameRect
IsIconic
GetMenuItemCount
GetKeyboardState
GetClientRect
GetMenuItemInfoA
IntersectRect
IsCharLowerA
AdjustWindowRectEx
CharToOemA
SetScrollRange
CreateMenu
SetTimer
TranslateMessage
TranslateMDISysAccel
SystemParametersInfoA
CharUpperA
PostMessageA
EnableWindow
IsZoomed
GetClassNameA
IsDialogMessageA
GetDlgItem
IsCharUpperA
OpenClipboard
CreatePopupMenu
GetMenu
SendMessageA
ChildWindowFromPoint
DrawIconEx
ReleaseCapture
GetCursorPos
GetClipboardData
EndPaint
GetDCEx
SendMessageW
GetFocus
GetParent
GetDC
SetWindowLongW
TrackPopupMenu
GetSysColor

advapi32

RegEnumValueA

comctl32

ImageList_DrawEx
ImageList_Add
ImageList_GetBkColor
ImageList_Create
ImageList_Draw
ImageList_Remove
ImageList_Write
ImageList_Read

Exports

Exports

_B7C@4
xU

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 132KB - Virtual size: 196KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 799B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3a0e0f2deafa4a10988669723185a979

Headers

File Characteristics

Imports

gdi32

ole32

version

kernel32

oleaut32

shlwapi

msvcrt

shell32

user32

advapi32

comctl32

Exports

Exports

Sections

.text Size: 9KB - Virtual size: 8KB

.data Size: 132KB - Virtual size: 196KB

.tls Size: 2KB - Virtual size: 1KB

.rdata Size: 1024B - Virtual size: 799B

.idata Size: 5KB - Virtual size: 4KB

.rsrc Size: 15KB - Virtual size: 15KB

.text
Size: 9KB - Virtual size: 8KB

.data
Size: 132KB - Virtual size: 196KB

.tls
Size: 2KB - Virtual size: 1KB

.rdata
Size: 1024B - Virtual size: 799B

.idata
Size: 5KB - Virtual size: 4KB

.rsrc
Size: 15KB - Virtual size: 15KB