0bf5453595b28893d81120976eb44a2e_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0bf5453595b28893d81120976eb44a2e_JaffaCakes118
Size

72KB
MD5

0bf5453595b28893d81120976eb44a2e
SHA1

ac18b351db1998fd6aac2f79da5cd8610855a077
SHA256

2f10cfe2696869d557238a59b9f0eb6bbe47c14b0e5baa12a976045458ff6539
SHA512

b38c7e4287853f19f5d203fea78c8c5753bd3ef4359b21294fb631abf6c0b64fc4a63a956fd7c0a26e68ca53fc20e94e33ade71c5a185f8e107a750a3e5ff046
SSDEEP

1536:BSzggSrM5784HfFYVeJK3Lo5gTroAlij:BbQJ8owego5oroaG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0bf5453595b28893d81120976eb44a2e_JaffaCakes118

Files

0bf5453595b28893d81120976eb44a2e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

80715e294486d50bfc79db0a2318e5de

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenA
lstrcpynA
LocalFree
FormatMessageA
GetLastError
SetFilePointer
CreateFileA
GetFileSize
lstrcmpiA
ReadFile
WriteFile
DeleteFileA
FindClose
FindNextFileA
GetDateFormatA
FileTimeToSystemTime
FileTimeToLocalFileTime
FindFirstFileA
lstrcmpA
SetCurrentDirectoryA
ReleaseMutex
GetModuleFileNameA
GetModuleHandleA
CreateMutexA
SetLastError
GetDriveTypeA
LoadLibraryA
GetProcAddress
SetEnvironmentVariableA
GetOEMCP
GetACP
CompareStringA
GetCPInfo
RtlUnwind
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
LCMapStringW
LCMapStringA
GetCurrentProcess
TerminateProcess
WideCharToMultiByte
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetStringTypeW
GetStringTypeA
MultiByteToWideChar
ExitProcess
GetVersion
GetCommandLineA
GetStartupInfoA
HeapAlloc
GetLocalTime
GetSystemTime
GetTimeZoneInformation
HeapFree
CloseHandle
lstrcpyA
GetFullPathNameA
GetCurrentThreadId
CompareStringW
GetCurrentDirectoryA

user32

DialogBoxParamA
GetDC
ReleaseDC
CreateWindowExA
RegisterClassA
GetClassInfoA
GetClientRect
MoveWindow
GetDlgItemInt
SetDlgItemInt
FindWindowA
UnregisterClassA
DefWindowProcA
SendMessageA
SetWindowPos
SystemParametersInfoA
GetWindowRect
IsWindowVisible
GetParent
UnhookWindowsHookEx
MessageBoxA
SetWindowsHookExA
GetWindowLongA
wvsprintfA
PostMessageA
wsprintfA
SetTimer
KillTimer
GetDlgItem
MessageBeep
DestroyWindow
GetDialogBaseUnits
WinHelpA
DestroyIcon
GetSystemMenu
CheckMenuItem
LoadIconA
SetClassLongA
AppendMenuA
SetWindowLongA
GetSystemMetrics
GetCursorPos
TrackPopupMenu
SetForegroundWindow
CreateDialogParamA
GetDlgItemTextA
EnableWindow
SendDlgItemMessageA
EndDialog
SetDlgItemTextA
InvalidateRect
GetWindowTextA
SetWindowTextA
ShowWindow
MapDialogRect

gdi32

LPtoDP
GetTextExtentPoint32A

shell32

SHBrowseForFolderA
SHGetPathFromIDListA
Shell_NotifyIconA

advapi32

RegDeleteKeyA
RegQueryValueExA
RegOpenKeyExA
RegSetValueExA
RegCreateKeyExA

wsock32

WSACleanup
WSAStartup
gethostname
WSAAsyncGetHostByName
sendto
gethostbyname
connect
recvfrom
WSAGetLastError
inet_addr
ioctlsocket
closesocket
send
ntohs
recv
WSAAsyncSelect
socket
htons
bind

Sections

.text
Size: 40KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

80715e294486d50bfc79db0a2318e5de

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

advapi32

wsock32

Sections

.text Size: 40KB - Virtual size: 37KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 12KB - Virtual size: 15KB

.rsrc Size: 8KB - Virtual size: 45KB

.text
Size: 40KB - Virtual size: 37KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 12KB - Virtual size: 15KB

.rsrc
Size: 8KB - Virtual size: 45KB