a0c0cce193fd0e7e5f4a8c740106302a_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a0c0cce193fd0e7e5f4a8c740106302a_JaffaCakes118
Size

78KB
MD5

a0c0cce193fd0e7e5f4a8c740106302a
SHA1

73d8eab495418dbfdeba785e622cb8dae6e76f1f
SHA256

efde5727bed9d34483b4cbb51aecd9e7a730337afade6132b43cc2cae92d2361
SHA512

41ac4d9d5ee170512a3d9b9cb7628d323fac387139acb431189652bb5fd8cb9fb95dee22fe1fc7f023f9788350d4636a181ef010ef3ef6a476932ebbb29fc6b8
SSDEEP

1536:DoGHZ0Dikhgq7QRZJAEB2NsRyyEUi8qiOc0pKUHOgcGtkLuRZE61KJqUfkPe+s/6:jZ041RZHnRth0UKkLuXE6avcPe+j

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a0c0cce193fd0e7e5f4a8c740106302a_JaffaCakes118

Files

a0c0cce193fd0e7e5f4a8c740106302a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

00b270a2f674feb8db996fbabfa9d72b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleW
TryEnterCriticalSection
MoveFileW
InitializeCriticalSection
GetPrivateProfileSectionW
GetProcessTimes
GetLogicalDriveStringsA
GetModuleHandleA
MapViewOfFileEx
ExitProcess
GetLastError
GetLocalTime
GetProcessWorkingSetSize
GetUserDefaultLangID
GetSystemDirectoryA
GetEnvironmentStrings
FindResourceW
LoadLibraryA
GetUserDefaultLCID
Heap32First
GetProcAddress
GetUserDefaultUILanguage
IsBadHugeReadPtr
DosDateTimeToFileTime
GetNumberFormatA
HeapCreate
VirtualAlloc
CreateDirectoryExW
FindClose
CreateFileA
VirtualProtect

msvcrt

_adj_fdiv_m16i
__p__winver
isupper
memcpy
isspace
feof
_ismbcalnum
_aexit_rtn
_lseek
_localtime64
longjmp
memset
__p___winitenv
wcscspn
ungetc
_findclose
_ctime64
strcat
is_wctype
_ismbcprint
_putws
ispunct
_ismbbgraph

user32

ModifyMenuW
EqualRect
DestroyWindow
FillRect
PrivateExtractIconsW
LoadStringA
UpdateWindow
GetParent
LoadStringW

opengl32

wglRealizeLayerPalette
glColor3iv
glTexGeniv
glVertex4s
glGetTexGeniv
glHint
glLogicOp
glMap1f
wglUseFontOutlinesW
glRasterPos3f
glCopyTexSubImage2D
glPolygonMode
glPixelTransferf
glEdgeFlagv
glTexCoord4i
glInterleavedArrays
glOrtho

Sections

.text
Size: 35KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 627B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sp
Size: 512B - Virtual size: 115B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.sp0
Size: 1024B - Virtual size: 537B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.sp1
Size: 512B - Virtual size: 22B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sp2
Size: 512B - Virtual size: 69B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.sp3
Size: 512B - Virtual size: 57B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 35KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 92B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

00b270a2f674feb8db996fbabfa9d72b

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

opengl32

Sections

.text Size: 35KB - Virtual size: 34KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 1024B - Virtual size: 627B

.sp Size: 512B - Virtual size: 115B

.sp0 Size: 1024B - Virtual size: 537B

.sp1 Size: 512B - Virtual size: 22B

.sp2 Size: 512B - Virtual size: 69B

.sp3 Size: 512B - Virtual size: 57B

.rsrc Size: 35KB - Virtual size: 34KB

.reloc Size: 512B - Virtual size: 92B

.text
Size: 35KB - Virtual size: 34KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 1024B - Virtual size: 627B

.sp
Size: 512B - Virtual size: 115B

.sp0
Size: 1024B - Virtual size: 537B

.sp1
Size: 512B - Virtual size: 22B

.sp2
Size: 512B - Virtual size: 69B

.sp3
Size: 512B - Virtual size: 57B

.rsrc
Size: 35KB - Virtual size: 34KB

.reloc
Size: 512B - Virtual size: 92B