a0ff3368f61691648e73ca78ec671b84_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a0ff3368f61691648e73ca78ec671b84_JaffaCakes118
Size

170KB
MD5

a0ff3368f61691648e73ca78ec671b84
SHA1

d85f4f8678d9ab6dcceac2973b1e8f5d3db7a365
SHA256

c9d84a95fbb32a0383627b66c1ece6c3ee746713e2b4e1896aa8b98e6947b7a5
SHA512

d24b5846fcf07eadee124b788e1036686a03cb44a2870147d9fea98cb9575580a8085dd2eb51a7632e4c721670fd1a50b03719918362351df51169941a4ec572
SSDEEP

3072:6Y2Zw1R4UIq5sSoOqLapq284HvqQopYthMDmBEQFEph330KxS5+uAC9HutteihN:6ZwxL6OqX+emM2fYhH0KxS5B79HutttN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a0ff3368f61691648e73ca78ec671b84_JaffaCakes118

Files

a0ff3368f61691648e73ca78ec671b84_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a4c6d76a4542fecc027849487d0d5de7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

gdi32

CreateDIBSection
SetBkMode
GetTextMetricsW
LineTo
CreateFontW
SetBkColor
CreateDCW
SetViewportOrgEx
CombineRgn
GetObjectW
DeleteObject
StretchBlt
CreateCompatibleDC
CreateSolidBrush
CreatePen
ExtCreateRegion
SetTextColor
CreatePatternBrush
BitBlt
SetViewportExtEx
GetCharWidthW
MoveToEx
SelectObject
CreateCompatibleBitmap
GetDeviceCaps
DeleteDC
GetStockObject

comdlg32

GetSaveFileNameW

shell32

ShellExecuteW

advapi32

RegQueryValueExW
RegCloseKey
RegEnumKeyW
RegQueryInfoKeyW
RegSetValueExW
RegOpenKeyExW
RegCreateKeyExW
RegDeleteKeyA

msvfw32

ICInfo

kernel32

CreateFileA
GetVDMCurrentDirectories
FindClose
FreeLibrary
ExitProcess
SetThreadPriorityBoost
WriteFile
DeleteFileW
MultiByteToWideChar
CreateProcessW
GetUserDefaultUILanguage
FindFirstFileW
EnumResourceNamesW
GetModuleHandleA
GetProcAddress
HeapAlloc
GetCurrentProcessId
SetUnhandledExceptionFilter
ReadFile
GetLocalTime
LoadLibraryW
MoveFileW
SetFilePointer
OutputDebugStringW
WideCharToMultiByte
HeapFree

comctl32

ImageList_Create
ImageList_ReplaceIcon
ImageList_Draw
ImageList_Destroy

user32

GetDlgItem
SetWindowsHookExW
GetMenuStringW
MessageBoxW
EndDialog
GetSysColor
GetWindowInfo
GetWindowLongW
MoveWindow
SetRect
AdjustWindowRect
SetWindowTextW
GetWindowRect
SendMessageW

Sections

.text
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 53KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imul
Size: 1024B - Virtual size: 372KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a4c6d76a4542fecc027849487d0d5de7

Headers

File Characteristics

Imports

gdi32

comdlg32

shell32

advapi32

msvfw32

kernel32

comctl32

user32

Sections

.text Size: 112KB - Virtual size: 112KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 53KB - Virtual size: 52KB

.imul Size: 1024B - Virtual size: 372KB

.text
Size: 112KB - Virtual size: 112KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 53KB - Virtual size: 52KB

.imul
Size: 1024B - Virtual size: 372KB