0d184a025272169d57d149981b8b4fc5_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0d184a025272169d57d149981b8b4fc5_JaffaCakes118
Size

74KB
MD5

0d184a025272169d57d149981b8b4fc5
SHA1

2a00f4921481cd75c7dee399a0c8200e6df77ea9
SHA256

93bfacb2c9cb56736cbaeda74ffadf85452bbb639d8b4ea45bf7388924b6230e
SHA512

b74ae3a973c60da49a1d2bafb4b4721e37697585a22474a2ce2e9550669731bc3d9777fb2b197761adebb8725e963818a91f39cd84def3e2f6330c66af6b5f39
SSDEEP

1536:62mwcQGp4+BcyJeFiero0TcHsi3eMYqPU6ynpeAaixLRhkqE:6ScH6+BHeNo+6z3eM7U6ynztR2X

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0d184a025272169d57d149981b8b4fc5_JaffaCakes118

Files

0d184a025272169d57d149981b8b4fc5_JaffaCakes118
.exe windows:1 windows x86 arch:x86

60849aa81ca5ffecf84113307452fa28

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

FindWindowA
RegisterClassExA
LoadIconA
CreateWindowExA
GetMessageA
PeekMessageA
TranslateMessage
DispatchMessageA
DefWindowProcA
PostQuitMessage
MessageBoxA
PostMessageA
GetDC
ReleaseDC
SetWindowTextA
DialogBoxParamA
EndDialog
SendDlgItemMessageA
GetMenu
SetMenuItemInfoA
CheckMenuRadioItem
SetForegroundWindow
ShowWindow
CreatePopupMenu
DestroyMenu
AppendMenuA
RemoveMenu
GetSubMenu
TrackPopupMenu
GetCursorPos

kernel32

GetModuleHandleA
ExitProcess
CreateFileA
ReadFile
WriteFile
CloseHandle
GetCommandLineA
GetModuleFileNameA
CreateProcessA
GetExitCodeProcess
WaitForMultipleObjects
CreateEventA
GetCurrentProcess
GetCurrentThread
SetPriorityClass
SetThreadPriority
CreateThread
ExitThread
GetExitCodeThread
SuspendThread
ResumeThread
TerminateThread
Sleep
GlobalAlloc
GlobalFree
LoadLibraryA
FreeLibrary
GetProcAddress
GetVersionExA

gdi32

CreateCompatibleBitmap
SetDIBits
CreateDIBitmap
DeleteObject
CreateCompatibleDC
SelectObject
BitBlt
GdiFlush
CreateFontA
SetBkMode
SetTextColor
SetBkColor
TextOutA

shell32

Shell_NotifyIconA
ShellExecuteA

comdlg32

GetSaveFileNameA
GetOpenFileNameA

advapi32

RegOpenKeyExA
RegCloseKey
RegQueryValueExA
RegSetValueExA
RegCreateKeyExA
RegDeleteKeyA

winmm

timeGetDevCaps
timeBeginPeriod
timeEndPeriod
timeSetEvent
timeKillEvent

Sections

code
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

data
Size: 54KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

imports
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

relocs
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

resource
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

60849aa81ca5ffecf84113307452fa28

Headers

File Characteristics

Imports

user32

kernel32

gdi32

shell32

comdlg32

advapi32

winmm

Sections

code Size: 6KB - Virtual size: 8KB

data Size: 54KB - Virtual size: 56KB

.bss Size: - Virtual size: 4KB

.text Size: 1KB - Virtual size: 4KB

imports Size: 2KB - Virtual size: 4KB

relocs Size: 1KB - Virtual size: 4KB

resource Size: 6KB - Virtual size: 8KB

code
Size: 6KB - Virtual size: 8KB

data
Size: 54KB - Virtual size: 56KB

.bss
Size: - Virtual size: 4KB

.text
Size: 1KB - Virtual size: 4KB

imports
Size: 2KB - Virtual size: 4KB

relocs
Size: 1KB - Virtual size: 4KB

resource
Size: 6KB - Virtual size: 8KB