0ccd6d75037d6fad6d8a85439cd22b24_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0ccd6d75037d6fad6d8a85439cd22b24_JaffaCakes118
Size

298KB
MD5

0ccd6d75037d6fad6d8a85439cd22b24
SHA1

6dd258df9064d1bfba16896f0240d8bdf5674acd
SHA256

9c516d2fee9a66847fe204b5327fb1f65cecfa4d2e06765f1185dcfc7f1338d4
SHA512

0e3d1e99b8ee91240f5b8980dc1c8a0abd3fdbdbd65981a0bf9b313e8180c2cf653dec3717d8951d8f35303c188d1d7201da1f84e7669f2548833c9d442e948d
SSDEEP

6144:gYVyLn1nQXmLzulkeguv9JoUvpiqCbl6kLiWOv3LP+pj1tDGPGCqPsYCX6gU9kid:nsZQsvo9JouMl6k+WOvrwhtDQJDn6buc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0ccd6d75037d6fad6d8a85439cd22b24_JaffaCakes118

Files

0ccd6d75037d6fad6d8a85439cd22b24_JaffaCakes118
.exe windows:4 windows x86 arch:x86

44c885d807fbe945371a1954a5c88d47

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadFile
FreeLibrary
GetEnvironmentVariableA
WriteProfileStringA
GetFileTime
WriteFile
GlobalDeleteAtom
GlobalAddAtomA
GetTickCount
GetExitCodeProcess
SetFileTime
FlushFileBuffers
CompareFileTime
FreeResource
CloseHandle
LoadResource
SizeofResource
FindResourceA
GlobalUnlock
GlobalLock
GlobalAlloc
GlobalFree
LoadLibraryA
GetCurrentThreadId
GetCommandLineA
GetCommandLineW
GetUserDefaultLangID
GetVersionExA
SetFilePointer
GetLastError
GetModuleHandleA
GetProcAddress
CopyFileA
GetTempPathA
SetLastError
GetModuleFileNameA
CreateProcessA
lstrlenA
GetStartupInfoA
lstrcpynA
SearchPathA
GetVolumeInformationA
LocalAlloc
LocalFree
CreateFileA
GetFileAttributesA
GetSystemDirectoryA
DeleteFileA
SetFileAttributesA
CreateDirectoryA
GetCurrentDirectoryA
GetWindowsDirectoryA
GetShortPathNameA
lstrlenW
CompareStringA
lstrcpyA
WideCharToMultiByte
LockResource
MultiByteToWideChar

user32

PackDDElParam
IsWindowUnicode
SetTimer
LoadIconA
GetSystemMetrics
SetFocus
CheckDlgButton
KillTimer
FreeDDElParam
EndPaint
DrawIcon
BeginPaint
IsIconic
DestroyIcon
GetDlgItem
EnableWindow
MoveWindow
FindWindowA
WaitForInputIdle
TranslateMessage
CharUpperA
CharLowerA
EndDialog
UnhookWindowsHookEx
CallNextHookEx
GetWindowRect
GetDesktopWindow
GetDC
ReleaseDC
CharNextA
DialogBoxIndirectParamA
MessageBoxA
PostMessageA
SendMessageA
GetWindowLongA
SendDlgItemMessageA
SetWindowsHookExA
GetClassInfoA
PeekMessageA
IsDialogMessageA
DispatchMessageA
SetWindowTextA
SetDlgItemTextA
GetDlgItemTextA
SystemParametersInfoA

gdi32

GetMapMode
SetMapMode
GetStockObject
GetDeviceCaps
GetObjectA

comdlg32

GetOpenFileNameA

advapi32

RegSetValueA
RegCreateKeyExA
RegCreateKeyA
RegOpenKeyA
RegCloseKey
RegQueryValueExA
RegQueryValueA
RegOpenKeyExA
RegSetValueExA

crtdll

_global_unwind2
_fmode_dll
_commode_dll
_local_unwind2
memset
memcpy
exit
swprintf
_exit
_XcptFilter
_acmdln_dll
_initterm
__GetMainArgs

Sections

.text
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 309B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

44c885d807fbe945371a1954a5c88d47

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

crtdll

Sections

.text Size: 31KB - Virtual size: 30KB

.rdata Size: 512B - Virtual size: 309B

.data Size: 4KB - Virtual size: 44KB

.idata Size: 3KB - Virtual size: 3KB

.CRT Size: 512B - Virtual size: 8B

.rsrc Size: 4KB - Virtual size: 4KB

.reloc Size: 3KB - Virtual size: 3KB

.text
Size: 31KB - Virtual size: 30KB

.rdata
Size: 512B - Virtual size: 309B

.data
Size: 4KB - Virtual size: 44KB

.idata
Size: 3KB - Virtual size: 3KB

.CRT
Size: 512B - Virtual size: 8B

.rsrc
Size: 4KB - Virtual size: 4KB

.reloc
Size: 3KB - Virtual size: 3KB