0ce77c577402a5f222637e1f75f735db_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

0ce77c577402a5f222637e1f75f735db_JaffaCakes118
Size

91KB
MD5

0ce77c577402a5f222637e1f75f735db
SHA1

d6006dd61454bf6a86f390531a43508a67829de0
SHA256

64e9a3ebb7af82843cae18a92f92b5c2c7319b9df3270fa922671ca8888765e6
SHA512

cff8f9147b3921f2f495f7026b900609b007de587ee5ff4a03e27ac3b431a9f9b161e2b00a228aa8d418abca87851fbf75b7342d1c5d58b53bff5232f644687e
SSDEEP

1536:g5QGky/Uh5Vz+Of3GXEUTl6I4OeBXq0odsjTF4KSG3j76Vs253k2/lVzTo8:w1ky/s5VDtUcX/qzdWOfGz76Vs250gln

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0ce77c577402a5f222637e1f75f735db_JaffaCakes118

Files

0ce77c577402a5f222637e1f75f735db_JaffaCakes118
.exe windows:5 windows x86 arch:x86

a1fcb9720f9b6794c3f49dc3551ab9ce

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_Add
ImageList_Create
ImageList_Destroy

ntdll

RtlUnwind

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

kernel32

WriteFile
GetStdHandle
CreateNamedPipeA
FindClose
CloseHandle
HeapAlloc
GetProcessHeap
SetUnhandledExceptionFilter
QueryPerformanceCounter
HeapFree
GetProfileStringW
GetCommandLineA
InitializeCriticalSection
Sleep
LeaveCriticalSection
GetNamedPipeInfo
Beep
MulDiv
LocalReAlloc
CompareStringW
GetACP
ExitThread
RaiseException
InterlockedExchange
GetLastError
EnterCriticalSection
GetLocalTime
LoadLibraryA
GetFileType
DeleteCriticalSection
LocalFree
CreateThread

user32

MoveWindow
GetWindow
CreateIconIndirect
GetActiveWindow
ReleaseDC
GetDC
DrawTextA
ShowWindow
CreateIcon
GetForegroundWindow

gdi32

ExtCreatePen
SelectObject
CreateCompatibleDC
MaskBlt
SetMapMode

msvcrt

memset

Exports

Exports

_CreateSweetPlace@16
_GetAwayFromMe@20

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 512B - Virtual size: 256B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 81KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 278B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a1fcb9720f9b6794c3f49dc3551ab9ce

Headers

DLL Characteristics

File Characteristics

Imports

comctl32

ntdll

version

kernel32

user32

gdi32

msvcrt

Exports

Exports

Sections

.text Size: 6KB - Virtual size: 5KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: - Virtual size: 40B

DATA Size: 512B - Virtual size: 256B

.rsrc Size: 81KB - Virtual size: 81KB

.reloc Size: 512B - Virtual size: 278B

.text
Size: 6KB - Virtual size: 5KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: - Virtual size: 40B

DATA
Size: 512B - Virtual size: 256B

.rsrc
Size: 81KB - Virtual size: 81KB

.reloc
Size: 512B - Virtual size: 278B