0c8f227e1bb235a1916927c58a1d2d06_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0c8f227e1bb235a1916927c58a1d2d06_JaffaCakes118
Size

1.7MB
MD5

0c8f227e1bb235a1916927c58a1d2d06
SHA1

17d633d782523c3dfd76baff4cefb12728bd2808
SHA256

d0b68751e1e5e2dccce68836042084917170aa7bcb625ab9e69f073d3bc37402
SHA512

1b9a1d98b83c2c0502ec81f65122a7a6784b05b116693f69111218fc34f6608559175173906492866950d226040d371abe4cb02f5ae9523b718c41c89d71fb64
SSDEEP

24576:2dSM+CutgostaotOpYm3skaJVAu26A7bW3KQYagt6f2VMh4Jb73WepzpqT63EL8f:e3+C+goGrtOFa8u29qE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0c8f227e1bb235a1916927c58a1d2d06_JaffaCakes118

Files

0c8f227e1bb235a1916927c58a1d2d06_JaffaCakes118
.exe windows:4 windows x86 arch:x86

63d17b12845065a61a280ecd87d866a1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapDestroy
GetEnvironmentVariableA
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
HeapCreate
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetCommandLineA
GetStartupInfoA
RtlUnwind
VirtualFree
HeapFree
WriteFile
GetCPInfo
GetOEMCP
HeapAlloc
VirtualAlloc
HeapReAlloc
GetVersionExA
GetProcAddress
LoadLibraryA
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
LoadLibraryExA
ExitProcess
GetVersion
CreateDirectoryA
VirtualProtect
OpenProcess
GetSystemDirectoryW
FlushViewOfFile
CreateMutexA
AreFileApisANSI
CancelIo
FlushInstructionCache
CreateMailslotA
CreateDirectoryW
BackupWrite
EnumSystemCodePagesA
RemoveDirectoryA
FoldStringA
EnumCalendarInfoW
EnumSystemCodePagesW
CreateDirectoryExW
SetFileAttributesA
FoldStringW
CreateMutexW
FlushFileBuffers
EnumCalendarInfoA
BackupRead
GetTickCount
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
QueryPerformanceCounter
GetLastError
GetModuleHandleA
GetModuleFileNameA
GetACP
FreeEnvironmentStringsW
GetStringTypeW

user32

GetSystemMetrics
GetWindowLongW
GetClassNameA
DefFrameProcA
GetSysColor
LoadStringW
DefFrameProcW
DestroyCaret
CreateDialogIndirectParamA
SetCursor
GetClientRect
DefWindowProcA
DispatchMessageW
IsWindowEnabled
SetClassLongA
AppendMenuA
SetWindowLongW
DispatchMessageA
GetSubMenu
CharNextA
CloseClipboard
CreateDesktopW
GetParent
RegisterClassExW
CharNextW
DestroyAcceleratorTable
GetWindowLongA
GetClassLongW

gdi32

EnumEnhMetaFile
EnumFontsW
ExtCreateRegion
CreateFontIndirectA
EnumFontFamiliesExA
GetAspectRatioFilterEx
EnumFontFamiliesW
EndPath
BitBlt
GetArcDirection
GetBitmapBits
RectVisible
GetBitmapDimensionEx
CombineRgn
ExcludeClipRect
ExtCreatePen
EnumFontsA
CreateCompatibleBitmap
PtVisible
CreateDCA
ExtTextOutA
CopyMetaFileW
Rectangle
ExtEscape

advapi32

RegCreateKeyExA
CopySid
InitializeSid
AccessCheckAndAuditAlarmW
CreateRestrictedToken
DeleteAce
LookupAccountNameW
IsValidSid
AddAccessAllowedAce
LookupPrivilegeNameA
RegQueryValueExA
AccessCheckAndAuditAlarmA
RegDeleteKeyA
RegEnumValueW
RegCloseKey
RegDeleteValueW
RegOpenKeyW
RegOpenKeyExW
AdjustTokenGroups
RegSetValueExA
AddAuditAccessAce
AreAllAccessesGranted
EqualSid
CreateServiceA
RegEnumValueA
AddAce
AddAccessDeniedAce
RegQueryInfoKeyW

Sections

.text
Size: 904KB - Virtual size: 900KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 30.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 824KB - Virtual size: 822KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data
.rdata
.rsrc/0/BITMAP/208.bmp
.rsrc/0/BITMAP/9151.bmp
.rsrc/0/BITMAP/9152.bmp
.rsrc/0/BITMAP/9153.bmp
.rsrc/0/BITMAP/9154.bmp
.rsrc/0/BITMAP/9155.bmp
.rsrc/0/BITMAP/9157.bmp
.rsrc/1033/DIALOG/103
.rsrc/1033/DIALOG/105
.rsrc/1033/DIALOG/106
.rsrc/1033/DIALOG/109
.rsrc/1033/DIALOG/111
.rsrc/1033/GROUP_ICON/103
.rsrc/1033/ICON/1.ico
.rsrc/1033/ICON/2.ico
.rsrc/1033/ICON/3.ico
.rsrc/1033/ICON/4.ico
.rsrc/1033/ICON/5.ico
.rsrc/1033/ICON/6.ico
.rsrc/1033/ICON/7.ico
.rsrc/1033/ICON/8.ico
.rsrc/1033/ICON/9.ico
.rsrc/1033/MANIFEST/1
.xml
.rsrc/1033/version.txt
.rsrc/1049/BITMAP/1126.bmp
.rsrc_1
.text

Sharing

General

Malware Config

Signatures

Files

63d17b12845065a61a280ecd87d866a1

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 904KB - Virtual size: 900KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 12KB - Virtual size: 30.1MB

.rsrc Size: 824KB - Virtual size: 822KB

.text
Size: 904KB - Virtual size: 900KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 12KB - Virtual size: 30.1MB

.rsrc
Size: 824KB - Virtual size: 822KB