0c728df9ee6a326974a844bf3f52ba16_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0c728df9ee6a326974a844bf3f52ba16_JaffaCakes118
Size

1.3MB
MD5

0c728df9ee6a326974a844bf3f52ba16
SHA1

9e53f31ef9100cc91a9f55a4afc926b0a9395393
SHA256

c9770c1aeace13d06ef5e45c888ffbd3323f2e9afc997e7323f807e1eafdac92
SHA512

1aeef0dcbf13b4594eafd2e80b523be185683613cabc2c9cf103296f9dc3e05f71ea5684748690cca4bc82859163a3e1d9dbaf7d3336b5392830077b6efc11c0
SSDEEP

24576:akBO8TVmMNLq1TqAcVFuhvB6nwMJ1DD7ob:W8TrmhqAcrAfMnDob

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0c728df9ee6a326974a844bf3f52ba16_JaffaCakes118

Files

0c728df9ee6a326974a844bf3f52ba16_JaffaCakes118
.exe windows:5 windows x86 arch:x86

6d5fa658ab244a7f46bba0e174d3dd73

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStringTypeW
GetUserDefaultLCID
CompareStringW
WideCharToMultiByte
MultiByteToWideChar
GetVersionExW
FindFirstFileW
CreateFileW
OutputDebugStringW
GetLocalTime
GetSystemTimeAsFileTime
GetSystemTime
CloseHandle
FindClose
ReadFile
InitializeCriticalSectionAndSpinCount
InitializeCriticalSection
GetLastError
GetCurrentThreadId
HeapFree
HeapReAlloc
HeapAlloc
VirtualAlloc
GlobalFree
GetProcAddress
InterlockedIncrement
InterlockedDecrement
GetStringTypeA
LCMapStringW
LCMapStringA
LoadLibraryA
GetOEMCP
GetACP
GetCPInfo
LeaveCriticalSection
EnterCriticalSection
WriteFile
RtlUnwind
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
TlsGetValue
SetLastError
TlsAlloc
TlsSetValue
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType

comctl32

FlatSB_SetScrollInfo
FlatSB_GetScrollPos
FlatSB_GetScrollInfo
CreateStatusWindowW
ImageList_GetImageInfo
ImageList_Write
ImageList_Read
ImageList_GetDragImage
ImageList_DragShowNolock
ImageList_SetDragCursorImage
ImageList_DragLeave
ImageList_DragEnter
ImageList_BeginDrag
ImageList_GetIcon
ImageList_Replace
ImageList_GetBkColor
ImageList_SetBkColor
ImageList_ReplaceIcon
ImageList_SetImageCount
ord17
PropertySheetW
DestroyPropertySheetPage
CreatePropertySheetPageW
InitializeFlatSB

setupapi

SetupDiGetDriverInfoDetailW
SetupOpenInfFileW
SetupCloseInfFile
SetupGetLineCountW
SetupGetFieldCount
SetupGetStringFieldW
SetupGetIntField
SetupOpenFileQueue
CM_Locate_DevNodeW
CM_Get_Parent_Ex
CM_Get_Parent
CM_Get_DevNode_Registry_Property_ExW
CM_Get_Device_ID_ExW
CM_Get_Device_IDW
SetupDiGetDeviceInstallParamsW
SetupDiSetDeviceRegistryPropertyW
SetupDiOpenDevRegKey
SetupDiGetDeviceRegistryPropertyW
SetupDiEnumDriverInfoW
SetupDiBuildDriverInfoList
SetupDiGetDeviceInterfaceDetailW
SetupDiOpenDeviceInterfaceW
SetupDiGetDeviceInstanceIdW
SetupDiOpenDeviceInfoW
SetupDiGetDeviceInfoListDetailW
SetupDiCreateDeviceInfoListExW
SetupCloseFileQueue

uxtheme

GetThemePartSize
GetThemeColor
SetWindowTheme
IsThemeActive
GetWindowTheme
EnableThemeDialogTexture
CloseThemeData

Sections

.text
Size: 47KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 250KB - Virtual size: 7.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.levn4
Size: 645KB - Virtual size: 645KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 380KB - Virtual size: 379KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6d5fa658ab244a7f46bba0e174d3dd73

Headers

File Characteristics

Imports

kernel32

comctl32

setupapi

uxtheme

Sections

.text Size: 47KB - Virtual size: 46KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 250KB - Virtual size: 7.4MB

.levn4 Size: 645KB - Virtual size: 645KB

.rsrc Size: 380KB - Virtual size: 379KB

.text
Size: 47KB - Virtual size: 46KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 250KB - Virtual size: 7.4MB

.levn4
Size: 645KB - Virtual size: 645KB

.rsrc
Size: 380KB - Virtual size: 379KB