0ffd34c0769187b8980adb560e0d534e_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0ffd34c0769187b8980adb560e0d534e_JaffaCakes118
Size

440KB
MD5

0ffd34c0769187b8980adb560e0d534e
SHA1

72285584766e3f1ae77fcadefa2ab97ec1914d56
SHA256

fe28399ba6cb74d71c8bc8e46a3259e461d1602996964dbe9cdc6e005b7a8856
SHA512

dcb8c892d4ef34ca1173b536377532fa9e9506df181ca908a796fc91ec203b14c484dafa2d55bd34df32ce9a7dab8f6c0698006810aa7035416632c7c3df7538
SSDEEP

12288:k3ZvMZWn00N11/7aarlQ7oqJBW0UdAZg/vFqQ:k3pMZe00BuarlQ7oqy0UdlFq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0ffd34c0769187b8980adb560e0d534e_JaffaCakes118

Files

0ffd34c0769187b8980adb560e0d534e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

885d96720bfcf942fbefe4b65b507203

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDlgCtrlID
SetWindowTextA
SetWindowPlacement
MessageBoxIndirectA
GetDesktopWindow
GetDlgItemTextA
EnumChildWindows
GetWindowRect
GetWindow
IsIconic
DeferWindowPos
EnumWindows
EndDialog
CloseWindow

ole32

OleCreateLinkToFile
CoDosDateTimeToFileTime
OleCreateStaticFromData
StgOpenPropStg
GetHGlobalFromILockBytes
OleGetIconOfFile
OleRegEnumVerbs
CoGetMarshalSizeMax
CoGetPSClsid
OleIsCurrentClipboard
FmtIdToPropStgName
OleCreateLink
OleRegGetUserType
CoInstall

oleaut32

LHashValOfNameSysA

advapi32

RegReplaceKeyA
RegRestoreKeyA
RegSaveKeyA
RegFlushKey
RegConnectRegistryA
RegCreateKeyA
RegCloseKey

kernel32

LoadLibraryA
GetProcAddress
HeapReAlloc
SetEnvironmentVariableA
GetOEMCP
GetACP
SetEnvironmentVariableW
CompareStringW
CompareStringA
HeapAlloc
WriteFile
RtlUnwind
HeapFree
VirtualFree
HeapCreate
HeapDestroy
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetCPInfo
GetCommandLineA
CreateSemaphoreA
WaitForSingleObject
GlobalFlags
HeapUnlock
GetSystemDefaultLangID
GetCPInfoExA
OpenMutexA
LocalSize
GetSystemDefaultLCID
ReleaseSemaphore
LocalHandle
CreateEventA
GlobalLock
GlobalMemoryStatus
WritePrivateProfileSectionA
WritePrivateProfileStructA
WriteProfileSectionA
VirtualAlloc
GetModuleHandleA
GetStartupInfoA
GetVersion
ExitProcess
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
InterlockedDecrement
InterlockedIncrement
MultiByteToWideChar
TerminateProcess
GetCurrentProcess
WideCharToMultiByte
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetCurrentThreadId
TlsSetValue
TlsAlloc
SetLastError
TlsGetValue
GetLastError

Sections

.text
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 105KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 306KB - Virtual size: 396KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

885d96720bfcf942fbefe4b65b507203

Headers

File Characteristics

Imports

user32

ole32

oleaut32

advapi32

kernel32

Sections

.text Size: 22KB - Virtual size: 21KB

.rdata Size: 105KB - Virtual size: 104KB

.data Size: 306KB - Virtual size: 396KB

.rsrc Size: 6KB - Virtual size: 5KB

.text
Size: 22KB - Virtual size: 21KB

.rdata
Size: 105KB - Virtual size: 104KB

.data
Size: 306KB - Virtual size: 396KB

.rsrc
Size: 6KB - Virtual size: 5KB