0f2cf3558a4c6ac0cd33a8ff5ff2313f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0f2cf3558a4c6ac0cd33a8ff5ff2313f_JaffaCakes118
Size

351KB
MD5

0f2cf3558a4c6ac0cd33a8ff5ff2313f
SHA1

60c19f045ef0bbec454ca04c7d6d970cc916335c
SHA256

d7ff215141de302b97cba96446c682f51d18bef0caf44dacfe5c427dd9163711
SHA512

4ee1fb06cf0606d590aab32c2ea101f6f88cf92ba1213fc0739754fc2c6f7265f953269770e7259c29ec08956c7caec76c2c4aaf6f7089b0f1d216a464eac866
SSDEEP

6144:zA/ynoQ4mG+LZr7cx9/iESakAJm5icA3J25ftiDi2LjIHAK6mARrQ/Ktoo:ztkmG+LZA/DkImix3Axom2nIHJ6m6rQA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0f2cf3558a4c6ac0cd33a8ff5ff2313f_JaffaCakes118

Files

0f2cf3558a4c6ac0cd33a8ff5ff2313f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f55b036e7ddfa43b928f7ac7aa0c8fad

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
FindFirstFileA
GetProcAddress
FreeLibrary
GetCurrentProcessId
MulDiv
SetCurrentDirectoryA
GetCommandLineW
FlushFileBuffers
SetStdHandle
GetStringTypeW
GetStringTypeA
GetSystemInfo
VirtualProtect
GetLocaleInfoA
VirtualQuery
InterlockedExchange
GetCPInfo
GetACP
IsBadCodePtr
IsBadReadPtr
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStdHandle
UnhandledExceptionFilter
LCMapStringW
LCMapStringA
HeapSize
GetCurrentProcess
TerminateProcess
HeapReAlloc
GetSystemTimeAsFileTime
GetTickCount
QueryPerformanceCounter
SetUnhandledExceptionFilter
TlsGetValue
TlsSetValue
TlsFree
SetLastError
TlsAlloc
HeapFree
HeapAlloc
CreateProcessA
MultiByteToWideChar
GetVersionExA
WideCharToMultiByte
TerminateThread
SetThreadPriority
FreeResource
GetThreadPriority
Sleep
GetModuleFileNameA
CreateFileA
SetFileAttributesA
GetFileAttributesA
CreateDirectoryA
FindClose
GetFileSize
SetFilePointer
GetLastError
WriteFile
ReadFile
CloseHandle
SetFileTime
LeaveCriticalSection
EnterCriticalSection
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
DeleteCriticalSection
InitializeCriticalSection
FindResourceA
LoadResource
SizeofResource
LockResource
GetOEMCP
CreateThread
GetCurrentThreadId
ExitThread
ExitProcess
RaiseException
RtlUnwind

user32

UpdateWindow
MessageBoxA
SendMessageA
SetWindowTextA
MessageBoxW
CreateWindowExA
SetDlgItemTextA
GetDlgItemTextA
MoveWindow
GetWindowRect
PostMessageA
SetForegroundWindow
InvalidateRect
SetFocus
GetSysColor
ClientToScreen
BeginPaint
EndPaint
SetRect
FillRect
SendDlgItemMessageA
GetDlgItem
EnableWindow
GetTopWindow
SystemParametersInfoA
LoadIconA
LoadCursorA
GetSysColorBrush
RegisterClassExA
ShowWindow
DestroyWindow
UnregisterClassA
PostQuitMessage
SetWindowLongA
GetWindowLongA
DefWindowProcA
PeekMessageA
GetMessageA
WindowFromPoint
IsChild
ScreenToClient
TranslateAcceleratorA
IsWindow
IsDialogMessageA
TranslateMessage
DispatchMessageA
GetDC
GetSystemMetrics
ReleaseDC
GetClientRect

gdi32

GetTextMetricsA
SetDIBitsToDevice
SetBkMode
SaveDC
ExcludeClipRect
RestoreDC
GetCurrentObject
GetObjectA
CreateICA
GetDeviceCaps
GetStockObject
BitBlt
DeleteDC
CreateCompatibleDC
CreateCompatibleBitmap
SelectObject
CreateFontA
GetTextExtentPoint32W
GetTextExtentPoint32A
CreateDIBSection
DeleteObject
SetStretchBltMode
StretchDIBits

comdlg32

GetOpenFileNameA

advapi32

RegSetValueExA
RegQueryValueExA
RegDeleteKeyA
RegCreateKeyExA
RegCloseKey

shell32

ShellExecuteA
SHGetPathFromIDListA
SHBrowseForFolderA
SHGetSpecialFolderLocation
SHGetMalloc

ole32

CoCreateInstance
CoUninitialize
CoInitialize
CoTaskMemFree

winmm

timeBeginPeriod
timeEndPeriod
timeGetTime

Sections

.text
Size: 120KB - Virtual size: 119KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f55b036e7ddfa43b928f7ac7aa0c8fad

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

winmm

Sections

.text Size: 120KB - Virtual size: 119KB

.rdata Size: 24KB - Virtual size: 22KB

.data Size: 8KB - Virtual size: 22KB

.rsrc Size: 28KB - Virtual size: 25KB

.text
Size: 120KB - Virtual size: 119KB

.rdata
Size: 24KB - Virtual size: 22KB

.data
Size: 8KB - Virtual size: 22KB

.rsrc
Size: 28KB - Virtual size: 25KB