0e499f78289c8739c5a768e4722f318d_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

0e499f78289c8739c5a768e4722f318d_JaffaCakes118
Size

144KB
MD5

0e499f78289c8739c5a768e4722f318d
SHA1

063a9c4f1e4b9da766c760c8829a9669ae27eb44
SHA256

a62ed5749e06700b9f452584e30d9ecbd522f1c3fd67f4e477bf404134c6bdd0
SHA512

636b9e6e75651e88eac7ba52d42c6d81ee2256d275c0196695f9cc738fc821cdd074cb8b2cc89fbc72f7eebe3dc691464509f655a58c8cecaa563b65098f42ef
SSDEEP

1536:kZwXxTuZVaVPgPfcjgBGusJrqF+EPXgw1laHOmIGFLYnDZZggHuGdTfqlHHHHHHa:kNkgwgBGJmF+EvyHUTn1ZggHbkXe9xj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0e499f78289c8739c5a768e4722f318d_JaffaCakes118

Files

0e499f78289c8739c5a768e4722f318d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6003ca446c4ee582e793da7e7f1cda27

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindAtomA
FatalAppExitA
LocalReAlloc
CreateThread
DuplicateHandle
DisconnectNamedPipe
GetOEMCP

imagehlp

EnumerateLoadedModules
MakeSureDirectoryPathExists

version

GetFileVersionInfoSizeA
VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoA
VerFindFileA
GetFileVersionInfoW
VerQueryValueA

winmm

joySetCapture
timeSetEvent
mixerOpen

user32

PostThreadMessageA
GetProcessWindowStation
RegisterClassW
GetScrollPos
GetClassLongW
GetClipboardData
CreateIconIndirect
LoadIconA
RegisterClassA
DispatchMessageA
GetMessageW
GetClassInfoW
EndPaint
ExitWindowsEx
DdeCreateStringHandleA
GetDlgItemTextA
SetPropW
FlashWindow
CreateIconFromResourceEx
GetWindowLongA
AdjustWindowRectEx
SetWindowTextW
EnableScrollBar
GetPropW
OpenDesktopW
CharUpperBuffA
DeleteMenu
SetWindowContextHelpId
CopyImage
GetMenuState
DeferWindowPos
IsCharAlphaNumericA
FindWindowW
LoadMenuA
GetMenuItemID
SetWindowPos
EnumThreadWindows
SetActiveWindow
RegisterHotKey
GetDlgItemInt
OpenInputDesktop
MessageBoxIndirectW
CopyIcon
InvalidateRect
SetWindowLongW
InsertMenuA
ReleaseDC
SetRect
DrawFrameControl
CreateAcceleratorTableW
GetWindowTextW
GetLastActivePopup
CopyAcceleratorTableA
GetSystemMenu
SetMenu
SetClipboardViewer
GetUserObjectInformationA
LoadImageW
ChangeDisplaySettingsA
DdeCreateDataHandle
BeginPaint
UnhookWindowsHookEx
CheckRadioButton
CreateDialogIndirectParamW
DrawTextA
DdeUninitialize
CloseClipboard
GetMenuStringA
OffsetRect
MapVirtualKeyW
DdeInitializeA

imm32

ImmIsIME
ImmReleaseContext

Sections

.text
Size: 92KB - Virtual size: 89KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6003ca446c4ee582e793da7e7f1cda27

Headers

File Characteristics

Imports

kernel32

imagehlp

version

winmm

user32

imm32

Sections

.text Size: 92KB - Virtual size: 89KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 16KB - Virtual size: 47KB

.rsrc Size: 24KB - Virtual size: 21KB

.text
Size: 92KB - Virtual size: 89KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 16KB - Virtual size: 47KB

.rsrc
Size: 24KB - Virtual size: 21KB