8c0a708ff3de08d31319df529724829f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

8c0a708ff3de08d31319df529724829f_JaffaCakes118
Size

112KB
MD5

8c0a708ff3de08d31319df529724829f
SHA1

fad8f52c4cdf0445cfe8bc328dbfb5f403f59965
SHA256

c87ef9de7813512056e2e9fa03e17485cbc66b4b00f1ecdbb0963b517ae9abb8
SHA512

100bf4daa6b5197555ef7f0b667b4349a8266ab4be8be93cfc384a8d611432f9d388389362fb843af36f3862a8f6be021bf96e82c0ddf4f7363fbca4a488e27b
SSDEEP

1536:qVm+/lx9y78y3Vf7ZS4X33EdnfyXqeohTlB00p5bw:qV7NxJyBZlH3EnfyXroBM0p50

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8c0a708ff3de08d31319df529724829f_JaffaCakes118

Files

8c0a708ff3de08d31319df529724829f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

094ba700ff952301925f7b03d093fb13

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MulDiv
TerminateProcess
OpenProcess
FreeLibrary
LoadLibraryA
GetProcAddress
GetVersionExA
SetEnvironmentVariableA
CompareStringW
CompareStringA
SetEndOfFile
FlushFileBuffers
SetStdHandle
GetStringTypeW
GetStringTypeA
VirtualAlloc
IsBadCodePtr
IsBadWritePtr
IsBadReadPtr
SetUnhandledExceptionFilter
WriteFile
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
GetEnvironmentStringsW
GetEnvironmentStrings
GetModuleFileNameA
FreeEnvironmentStringsA
UnhandledExceptionFilter
LCMapStringW
LCMapStringA
MultiByteToWideChar
WideCharToMultiByte
GetFileType
GetStdHandle
SetHandleCount
SetFilePointer
ReadFile
GetLastError
HeapSize
HeapReAlloc
HeapAlloc
GetOEMCP
GetACP
GetCPInfo
HeapFree
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
GetCurrentProcess
ExitProcess
GetLocalTime
GetSystemTime
GetTimeZoneInformation
RtlUnwind
GetLogicalDrives
GetFileAttributesA
GetDriveTypeA
CreateFileA
CloseHandle
DeviceIoControl
Beep
GetSystemDirectoryA
GetWindowsDirectoryA
SetErrorMode
WinExec
DeleteFileA
Sleep
FreeEnvironmentStringsW
GetVersion

user32

DialogBoxParamA
GetClientRect
SendDlgItemMessageA
EndDialog
SetDlgItemTextA
FillRect
MoveWindow
DrawTextA
EndPaint
PostQuitMessage
SendMessageA
GetSystemMetrics
LoadCursorA
MessageBoxA
ShowWindow
UpdateWindow
wsprintfA
SetWindowPos
LoadAcceleratorsA
GetMessageA
TranslateAcceleratorA
TranslateMessage
DispatchMessageA
SetActiveWindow
FindWindowA
DefWindowProcA
GetCursorPos
SetForegroundWindow
TrackPopupMenu
PostMessageA
GetMenuItemID
LoadMenuA
GetSubMenu
DestroyMenu
SetMenuDefaultItem
LoadStringA
KillTimer
SetTimer
LoadIconA
DestroyWindow
CreateWindowExA
RegisterClassExA
RegisterWindowMessageA
BeginPaint

gdi32

SetBkMode
CreateSolidBrush
CreateFontA
GetDeviceCaps
SetTextColor
SelectObject

advapi32

RegDeleteValueA
RegOpenKeyA
RegSetValueExA
RegCloseKey
RegCreateKeyA
RegQueryValueExA

shell32

Shell_NotifyIconA

Sections

.text
Size: 48KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

094ba700ff952301925f7b03d093fb13

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

Sections

.text Size: 48KB - Virtual size: 45KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 16KB - Virtual size: 23KB

.rsrc Size: 36KB - Virtual size: 71KB

.text
Size: 48KB - Virtual size: 45KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 16KB - Virtual size: 23KB

.rsrc
Size: 36KB - Virtual size: 71KB