0e7590b0df10e474760997e5a18b866d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0e7590b0df10e474760997e5a18b866d_JaffaCakes118
Size

100KB
MD5

0e7590b0df10e474760997e5a18b866d
SHA1

c9626b3830e61c92d9e86cc8a8548b0a625669de
SHA256

9915370a4bc9f00d3432fe44644ae85f24f40e00b0e8127669481aacd9420b32
SHA512

940d1a6ffef0419446b2943a8184dae15db1f5ecf119abb1c4bbf8a92908a75cf908bf871fd1cd17726c0d6a5a72ce25857ae7d022e0cfe6bf040374e59b855c
SSDEEP

1536:tchT9ku2fwROmDTR18sB6A1LO2bdjldZYwTwNClZHZEoT3Ynqj+jLLltM4G:X4RpDndZJwclZH6g3YnTLJtMt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0e7590b0df10e474760997e5a18b866d_JaffaCakes118

Files

0e7590b0df10e474760997e5a18b866d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e551dcf0a395663559222b2fcec3ab10

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DialogBoxParamW
LoadMenuA
IsMenu
AppendMenuW
GetDC
BlockInput
DrawTextW
DialogBoxParamA
LoadCursorA
GetFocus
CloseWindow
GetDlgItem
IsWindow
AlignRects
GetCursor
GetWindowTextLengthA
CopyIcon
EndDialog

kernel32

DeleteAtom
CreateProcessA
GetFileSize
FindFirstFileA
DeleteFileA
ReadConsoleA
CopyFileA
GetComputerNameA
ExitThread
CopyFileExW
GetCommandLineA
OpenFile
Sleep
GlobalFree
FindAtomA
GetLastError
CopyFileW
CreateThread
CopyFileA
WriteFile
GetCommandLineA
GetCPInfo
GetFileTime
DeleteFileW
CopyFileExW
CreateDirectoryA
GlobalFree
DeleteFileA
GetComputerNameA
GetConsoleMode
Sleep
ReadFile
FindAtomA
FindFirstFileA
CopyFileW
OpenFileMappingA
Sleep
CreateThread
GetFileSize
CreateProcessA
GetCommandLineA
GetLastError
ReadFile
ExitThread
GetConsoleMode
CreateDirectoryA
GetStdHandle
GetCPInfo
GlobalFree
GetComputerNameA
FindAtomA
CopyFileExA
ReadConsoleA

gdi32

GetPixel
AddFontResourceTracking
AddFontMemResourceEx
ClearBitmapAttributes
CreateSolidBrush
GetPixel
BeginPath
RestoreDC
AddFontResourceA
AddFontResourceExW
DeleteDC
CloseMetaFile
ClearBrushAttributes
DeleteObject
GetClipBox
GetCurrentPositionEx
AbortPath
GetDCOrgEx
ExtTextOutA
CloseFigure
GetPixel
GetDCOrgEx
AddFontResourceExA
AddFontMemResourceEx
AddFontResourceW
ClearBrushAttributes
GetBitmapBits
CreateSolidBrush
CopyMetaFileA
GetCurrentPositionEx
RestoreDC
GetPixel
DeleteObject
AbortPath
GetDCOrgEx
AddFontResourceW
AddFontResourceExW
CreateSolidBrush
CopyMetaFileA
GetClipBox
GetPixel
GetCurrentPositionEx
DeleteDC
GetBrushOrgEx
AddFontResourceA
CloseMetaFile
CancelDC
AddFontResourceTracking
GetPixel
AddFontMemResourceEx
BitBlt

advapi32

RegQueryInfoKeyA
RegEnumKeyW
RegDeleteKeyW
RegCreateKeyW
RegLoadKeyW
RegOpenKeyA
RegQueryValueW
RegOpenKeyExW
RegOpenKeyExA
RegCreateKeyExW
RegEnumKeyExA
RegQueryInfoKeyW
RegDeleteValueW
RegGetKeySecurity
RegOpenKeyW

comctl32

CreateToolbar
DrawStatusText
DllInstall
MenuHelp
ImageList_BeginDrag
CreateUpDownControl
ImageList_DragLeave
CreateMappedBitmap
CreateStatusWindowA
ImageList_DragEnter
DrawStatusTextA
ImageList_Create
CreateToolbarEx
ImageList_AddMasked
InitCommonControls

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 90KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e551dcf0a395663559222b2fcec3ab10

Headers

File Characteristics

Imports

user32

kernel32

gdi32

advapi32

comctl32

Sections

.text Size: 4KB - Virtual size: 4KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 90KB - Virtual size: 103KB

.text
Size: 4KB - Virtual size: 4KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 90KB - Virtual size: 103KB