0e847b9b73aa2338522a43b14c44ea0c_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

0e847b9b73aa2338522a43b14c44ea0c_JaffaCakes118
Size

120KB
MD5

0e847b9b73aa2338522a43b14c44ea0c
SHA1

d3e87beb7f1f90a53f4c332eedce83520769b87a
SHA256

aa45b0826409368b165b76767851eba0b12353f2700b928099ea28861bcd29d0
SHA512

bb3a377eb74eb3c3d66209971deb47480f697e0f7607d9a5f770d297316cf9fd416ce1b7b097f01cc04c5f7adde7a72528bf37d5f4c7c989a5153e0b5ba290c4
SSDEEP

1536:4u+lFozioIJA0OJybimVWUPEjDKj3q7VoagH/:4u+Uu7U6irhya7Voa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0e847b9b73aa2338522a43b14c44ea0c_JaffaCakes118

Files

0e847b9b73aa2338522a43b14c44ea0c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

93d4981923b67fc804fcd9da53a95ff5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_Read
ImageList_Destroy
ImageList_GetIconSize
ImageList_LoadImage
ImageList_DragShowNolock
ImageList_DragEnter
ImageList_GetIcon
ImageList_EndDrag
ImageList_Merge
ImageList_GetImageRect
ImageList_Create
ImageList_LoadImageW
ImageList_Draw
ImageList_ReplaceIcon
ImageList_AddMasked
ImageList_Copy
ImageList_GetDragImage
ImageList_GetImageCount
InitCommonControls
ImageList_Replace

user32

AppendMenuA
BlockInput
GetDC
LoadCursorA
GetCursor
AppendMenuW
CreateIcon
EndDialog
DrawIconEx
GetFocus
DrawIcon
CloseWindow
IsMenu
GetWindowTextLengthA
GetMenu

kernel32

WriteFile
GetFileTime
ReadConsoleW
GetLastError
GetCPInfo
ReadConsoleA
CopyFileW
ReadFile
CreateThread
Sleep
GlobalFree
CreateDirectoryA
FindAtomA
DeleteFileW
CopyFileA
GetComputerNameA
CopyFileExW
ExitThread
CreateDirectoryA
GetComputerNameA
ReadConsoleW
GetFileTime
GetConsoleMode
GetFileSize
FindFirstFileA
FindAtomA
DeleteAtom
CopyFileExA
SetLastError
DeleteFileW
Sleep
OpenFileMappingA

advapi32

RegLoadKeyW
RegEnumKeyExW
RegReplaceKeyA
RegGetKeySecurity
RegCreateKeyExW
RegDeleteKeyA
RegQueryInfoKeyA
RegEnumValueA
RegOpenKeyW
RegCreateKeyExA
RegEnumKeyW
RegEnumKeyA
RegLoadKeyA
RegQueryInfoKeyW
RegDeleteValueW
RegQueryValueExA
RegFlushKey
RegReplaceKeyW
RegQueryValueA
RegDeleteValueA
RegCreateKeyW
RegQueryValueW
RegOpenKeyExW

gdi32

RestoreDC
CopyMetaFileA
ExcludeClipRect
AddFontResourceA
BeginPath
GetDCOrgEx
AddFontMemResourceEx
CloseFigure
AddFontResourceExA
AddFontResourceTracking
AddFontResourceExW
GetBitmapBits
DeleteDC
CancelDC
BitBlt
ClearBrushAttributes
AbortPath
CloseMetaFile

Sections

.text
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 72KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 73B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_MEM_READ

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

93d4981923b67fc804fcd9da53a95ff5

Headers

File Characteristics

Imports

comctl32

user32

kernel32

advapi32

gdi32

Sections

.text Size: 8KB - Virtual size: 5KB

.data Size: 72KB - Virtual size: 2.2MB

.tls Size: 4KB - Virtual size: 73B

.rdata Size: 4KB - Virtual size: 2KB

.idata Size: 4KB - Virtual size: 3KB

.reloc Size: 4KB - Virtual size: 1KB

.rsrc Size: 20KB - Virtual size: 19KB

.text
Size: 8KB - Virtual size: 5KB

.data
Size: 72KB - Virtual size: 2.2MB

.tls
Size: 4KB - Virtual size: 73B

.rdata
Size: 4KB - Virtual size: 2KB

.idata
Size: 4KB - Virtual size: 3KB

.reloc
Size: 4KB - Virtual size: 1KB

.rsrc
Size: 20KB - Virtual size: 19KB