0dd08772a233b372675d3caf1c363ff1_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

0dd08772a233b372675d3caf1c363ff1_JaffaCakes118
Size

584KB
MD5

0dd08772a233b372675d3caf1c363ff1
SHA1

9867ac9e380ad7845917f14edd40a333cf1744c7
SHA256

ea17778d6d0f44b038e3950eb994dd677282cf74db4ed79673bb3cb991a2e25d
SHA512

341ce222b1bdb7355bad6b23c56b4d563fba96ed72d932e7a6d1b5c0e08cde011b020a332f5b36596da6691e12fbfcab8e7c1736e4363de101669c9fed6122f2
SSDEEP

12288:M8MiqgYc7Ij74pfa6sgbsAF3mP64cfi2pxX:JpzY4Ij745PsbAF2P6Ji2px

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0dd08772a233b372675d3caf1c363ff1_JaffaCakes118

Files

0dd08772a233b372675d3caf1c363ff1_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8784fd3b0c027254684b8a4f79e49f90

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

DeleteObject
GetDeviceCaps
SetBkMode
SelectObject
SetBkColor
CreateCompatibleBitmap

oleaut32

VariantClear
SysAllocStringLen
SysFreeString
SysStringLen

kernel32

SetConsoleCtrlHandler
Sleep
VirtualFree
UnmapViewOfFile
IsValidCodePage
CreateProcessA
GetEnvironmentStrings
SetStdHandle
GetVersion
GetACP
lstrcpynA
CloseHandle
ReadFile
SetFilePointer
TlsFree
MapViewOfFile
GetConsoleMode
CompareStringA
RaiseException
GetCurrentThread
InterlockedCompareExchange
GetCommandLineA
HeapSize
GetCPInfo
GetCommandLineW
SetFileTime
LockResource
GetCurrentProcessId
WritePrivateProfileStringA
SizeofResource
lstrlenW
VirtualQuery
GlobalUnlock
GetEnvironmentStringsW
GetThreadLocale
FindNextFileW
LCMapStringA
GetModuleHandleW
GetConsoleCP
GlobalFree
lstrlenA
HeapCreate
LCMapStringW
GetLastError
InterlockedIncrement
ExitProcess
TlsSetValue
GetFileType
CreateEventA
CreateFileW
CreateEventW
RemoveDirectoryA
GlobalLock
WaitForMultipleObjects
FindFirstFileW
FindResourceW
ResetEvent
lstrcpyA
FindFirstFileA
CompareStringW
GetProcessHeap
GetSystemInfo
GetProcAddress
DeleteFileW
SetErrorMode
DeleteFileA
CreateDirectoryA
FindResourceA
GetStartupInfoA
FreeLibrary
LoadLibraryA
FlushFileBuffers
VirtualProtect
TlsAlloc
IsBadWritePtr
GetTickCount
QueryPerformanceCounter
GetOEMCP
lstrcmpiA
SetHandleCount
EnterCriticalSection
HeapFree
WriteConsoleW
LeaveCriticalSection
GetCurrentThreadId
SetEndOfFile
GlobalAlloc
WriteConsoleA
TerminateProcess
SetEnvironmentVariableA
GetSystemDirectoryA
MulDiv
SetUnhandledExceptionFilter
CreateThread
GetModuleHandleA
CreateMutexA
GetLocalTime
MultiByteToWideChar
TlsGetValue
UnhandledExceptionFilter
LoadLibraryExA
GetModuleFileNameA
GetVersionExA
HeapAlloc
IsDebuggerPresent
GetModuleFileNameW
GetEnvironmentVariableA
SetLastError
OutputDebugStringA
FormatMessageA
InterlockedDecrement
FindClose
LoadResource
InitializeCriticalSection
FormatMessageW
LocalFree
SetEvent
GetFullPathNameA
GetStringTypeW
HeapReAlloc
GetSystemTimeAsFileTime
WriteFile
InterlockedExchange
GetStringTypeA
WideCharToMultiByte
GetTempPathA
FreeEnvironmentStringsW
LoadLibraryExW
CreateFileA
ExpandEnvironmentStringsA
LocalAlloc
GetLocaleInfoA
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
GetFileAttributesW
HeapDestroy
FindNextFileA
GetDriveTypeA
WaitForSingleObject
GetFileAttributesA
FileTimeToSystemTime
ReleaseMutex
GetConsoleOutputCP
GetStdHandle
VirtualAlloc
GetFileSize

user32

LoadIconA
LoadCursorA
ScreenToClient
GetDlgItem
SetTimer
GetSubMenu
CheckMenuItem
SetWindowTextA
SetWindowLongA
PostMessageA
GetWindowRect
GetSystemMetrics
KillTimer
BeginPaint
PeekMessageA
SetFocus
EndPaint
CreateWindowExA
GetWindowLongA
RegisterClassA
GetDesktopWindow
LoadStringA
TranslateMessage
EnableWindow
ShowWindow
DefWindowProcA
UpdateWindow
GetParent
GetMessageA
DestroyWindow
ReleaseDC
GetCursorPos
GetDC
DispatchMessageA
IsWindow
SetWindowPos
PostQuitMessage
MoveWindow
MapWindowPoints
GetClientRect
SetCursor
SetForegroundWindow
EndDialog
GetFocus
MessageBoxA
SetDlgItemTextA
GetSysColor
SystemParametersInfoA
InvalidateRect
EnableMenuItem
SendMessageA

advapi32

RegQueryInfoKeyA
RegSetValueExA
RegQueryValueExW
RegOpenKeyExW
RegCloseKey
RegDeleteValueA

msvcrt

_exit
_cexit
_controlfp
exit

Sections

wmmas
Size: 580KB - Virtual size: 579KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8784fd3b0c027254684b8a4f79e49f90

Headers

File Characteristics

Imports

gdi32

oleaut32

kernel32

user32

advapi32

msvcrt

Sections

wmmas Size: 580KB - Virtual size: 579KB

.bss Size: - Virtual size: 1KB

wmmas
Size: 580KB - Virtual size: 579KB

.bss
Size: - Virtual size: 1KB