0c647c47c785f8c42a042c1dd6496bc9_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0c647c47c785f8c42a042c1dd6496bc9_JaffaCakes118
Size

10.2MB
MD5

0c647c47c785f8c42a042c1dd6496bc9
SHA1

aee2c4e3dbf180646ee550751fe19ff62c6103a3
SHA256

4ab3b03dd130fc1abd705c7ede2562d10fc29d7231632aae98163e26cc174dc0
SHA512

80210c0bf745be9c19ad1d9a84ae70e7f011aff2cff09f33f06ea3c7426d312eaf4c498dfc5e2526518d9543fa165ffa5574b3647038202a6b79700cd675e26a
SSDEEP

196608:BZcMCVjZW6KnTuuoo/EEuLwENeiZPXG+9zcQlPcScUQDJQM9f9:YMenKnTqhNY+NcQlPcSBQJQMR9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0c647c47c785f8c42a042c1dd6496bc9_JaffaCakes118

Files

0c647c47c785f8c42a042c1dd6496bc9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c2c85c8f1c8e35e2227a8a43aefe5012

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

comctl32

ord17

mpr

WNetCloseEnum
WNetEnumResourceA
WNetOpenEnumA

kernel32

CreateFileA
CreateFileW
ReadFile
GetFileSize
GetProcAddress
LoadLibraryA
FreeLibrary
lstrlenA
GetModuleHandleA
GetSystemInfo
GetVersionExA
GetComputerNameA
Sleep
lstrcmpiA
GetCurrentProcess
ReleaseMutex
GetExitCodeProcess
CreateProcessA
SizeofResource
LockResource
LoadResource
FindResourceA
CopyFileA
GetLocalTime
GetTempFileNameA
SetFileAttributesA
GetFileAttributesA
GetEnvironmentVariableA
CreateMutexA
GetLastError
GetModuleFileNameA
ExpandEnvironmentStringsA
DeleteFileA
CloseHandle
LocalFree
FormatMessageA
SetStdHandle
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
InitializeCriticalSection
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetTimeZoneInformation
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
FlushFileBuffers
SetFilePointer
GetFileType
SetHandleCount
SetLastError
MultiByteToWideChar
WideCharToMultiByte
CreateDirectoryA
GetLocaleInfoW
SetEndOfFile
WaitForSingleObject
WriteFile
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetTempPathA
GetStdHandle
ExitProcess
HeapFree
HeapReAlloc
HeapAlloc
RtlUnwind
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RaiseException
ExitThread
GetCurrentThreadId
CreateThread
InterlockedIncrement
InterlockedDecrement
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
GetSystemTimeAsFileTime
GetTimeFormatA
GetDateFormatA
GetCommandLineA
GetProcessHeap
GetStartupInfoA
HeapDestroy
HeapCreate
VirtualFree
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
VirtualAlloc
HeapSize
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
GetConsoleCP
GetConsoleMode

user32

SetForegroundWindow
PeekMessageA
GetMessageA
TranslateMessage
DispatchMessageA
ExitWindowsEx
DialogBoxParamA
KillTimer
LoadIconA
SendMessageA
CreateWindowExA
SetTimer
EndDialog
MessageBoxA
SetWindowTextA
SetDlgItemTextA
EnableWindow
GetDlgItem
ShowWindow
GetWindowPlacement
SetWindowPlacement
GetSystemMetrics
DestroyIcon
GetDlgItemTextA

advapi32

RegQueryInfoKeyA
RegCreateKeyExA
RegSetValueExA
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
RegEnumKeyExA
GetUserNameA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey

ole32

StringFromGUID2

Sections

.text
Size: 164KB - Virtual size: 161KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 44KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10.0MB - Virtual size: 10.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c2c85c8f1c8e35e2227a8a43aefe5012

Headers

File Characteristics

Imports

version

comctl32

mpr

kernel32

user32

advapi32

ole32

Sections

.text Size: 164KB - Virtual size: 161KB

.rdata Size: 44KB - Virtual size: 40KB

.data Size: 12KB - Virtual size: 19KB

.rsrc Size: 10.0MB - Virtual size: 10.0MB

.text
Size: 164KB - Virtual size: 161KB

.rdata
Size: 44KB - Virtual size: 40KB

.data
Size: 12KB - Virtual size: 19KB

.rsrc
Size: 10.0MB - Virtual size: 10.0MB