0ab5fdcfca87f623c33a91a3c87611af_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0ab5fdcfca87f623c33a91a3c87611af_JaffaCakes118
Size

244KB
MD5

0ab5fdcfca87f623c33a91a3c87611af
SHA1

340d6cd45e6f857285c4299c435be7112eaa72c7
SHA256

57a578eef23ba25ea34b22533596b01ee6ecb7b2a8f57dd02dca938fabcad65c
SHA512

5c1244c0b2d10b43b3275ea81fdabed31895ca199a90732862ff7913e1168eba83ad584f0774e5abe39dfa8f20a6f2a09888938068c7207ced61f14b9f17f966
SSDEEP

3072:wNxSJR1vaWawMUQtwsObScPsOUxv/Ba4sBM4Zkhg1CL3E3dxNcTF/81rz253uCQy:wNxSTVMJOeYUJJa4u16URcNSrSwCQ2Eu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0ab5fdcfca87f623c33a91a3c87611af_JaffaCakes118

Files

0ab5fdcfca87f623c33a91a3c87611af_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7ba723b64d17f7a384fbe9ed1b0583ff

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHGetPathFromIDListA
SHGetSpecialFolderLocation
ShellExecuteA
FindExecutableA
SHBrowseForFolderA
SHGetMalloc

user32

GetClientRect
SetRect
EndPaint
LoadCursorA
GetLastActivePopup
ShowWindow
PostMessageA
SendMessageA
EnableWindow
GetWindowLongA
SetWindowLongA
SetWindowTextA
SetForegroundWindow
SetActiveWindow
SetDlgItemTextA
GetKeyState
CharUpperBuffA
GetParent
SendDlgItemMessageA
GetSysColor
InvalidateRect
UpdateWindow
LoadStringA
MessageBoxA
SetTimer
KillTimer
DialogBoxParamA
GetDlgItemTextA
EndDialog
GetWindowRect
GetSystemMetrics
SetWindowPos
PeekMessageA
TranslateMessage
DispatchMessageA
SetCursor
CharNextA
BeginPaint
SetWindowWord
GetWindowWord
DefWindowProcA
RegisterClassA
GetDlgItem

kernel32

GetLocaleInfoA
Sleep
EnterCriticalSection
LeaveCriticalSection
GetStringTypeW
GetStringTypeA
LCMapStringW
MultiByteToWideChar
LCMapStringA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
VirtualFree
HeapCreate
HeapDestroy
DeleteCriticalSection
GetFileType
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStdHandle
GetLastError
GetVersionExA
FindClose
FindFirstFileA
GetCurrentDirectoryA
SetCurrentDirectoryA
LoadLibraryA
SetFileTime
LocalFileTimeToFileTime
DosDateTimeToFileTime
LocalAlloc
GetDriveTypeA
GetEnvironmentVariableA
SetFilePointer
CloseHandle
CreateFileA
GetWindowsDirectoryA
_lclose
GlobalFree
GlobalUnlock
GlobalHandle
_llseek
_lread
_lopen
GlobalLock
GlobalAlloc
GlobalMemoryStatus
GetVersion
GetModuleFileNameA
WriteFile
GetSystemTime
lstrlenA
LocalFree
ExitProcess
GetModuleHandleA
_lcreat
GetVolumeInformationA
WinExec
lstrcmpiA
SetErrorMode
InitializeCriticalSection
VirtualAlloc
HeapReAlloc
GetConsoleCP
GetConsoleMode
HeapSize
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
FlushFileBuffers
WriteConsoleW
CreateDirectoryA
_lwrite
RtlUnwind
GetCommandLineA
HeapFree
HeapAlloc
GetProcessHeap
GetStartupInfoA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCPInfo
InterlockedIncrement
InterlockedDecrement
GetACP
GetOEMCP
IsValidCodePage
GetProcAddress
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetCurrentThreadId

gdi32

SetTextColor
SetTextAlign
GetBkColor
GetTextExtentPoint32A
ExtTextOutA
CreateDCA
GetDeviceCaps
CreateFontIndirectA
DeleteDC
SelectObject
DeleteObject
SetBkColor

advapi32

RegQueryValueA

comctl32

ord17

Sections

.text
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 76KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_winzip_
Size: 62.0MB - Virtual size: 62.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7ba723b64d17f7a384fbe9ed1b0583ff

Headers

File Characteristics

Imports

shell32

user32

kernel32

gdi32

advapi32

comctl32

Sections

.text Size: 56KB - Virtual size: 55KB

.rdata Size: 12KB - Virtual size: 10KB

.data Size: 8KB - Virtual size: 24KB

.rsrc Size: 76KB - Virtual size: 74KB

_winzip_ Size: 62.0MB - Virtual size: 62.0MB

.text
Size: 56KB - Virtual size: 55KB

.rdata
Size: 12KB - Virtual size: 10KB

.data
Size: 8KB - Virtual size: 24KB

.rsrc
Size: 76KB - Virtual size: 74KB

_winzip_
Size: 62.0MB - Virtual size: 62.0MB