e0a7721e8090af6260daf3f3ff95a05f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

e0a7721e8090af6260daf3f3ff95a05f_JaffaCakes118
Size

88KB
MD5

e0a7721e8090af6260daf3f3ff95a05f
SHA1

cdba2af611f2d18dcb4a9e62ed8d38f86eb30661
SHA256

d6b28594e0ad79c4160161fa049247f1c7cfe7f8911462d28b4e888aa71a6f30
SHA512

18f9e25351c72be40159d2d7dfdd224c9195a0edbd225890f92e2b83ed02241d3ed4e20eebf1a318ddec02d766a17f2c4201a85a25f51ac1ce27432e6b030003
SSDEEP

1536:HckDYnj8Nra1AbPBzz7MgmYQ6kk4j5rAhBr1bMHw0joCo+YXf:HCj8N3PN7MfYnkkU5rAhN2QAoCwXf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e0a7721e8090af6260daf3f3ff95a05f_JaffaCakes118

Files

e0a7721e8090af6260daf3f3ff95a05f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f8b232278f7707220fef7b22db636303

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LeaveCriticalSection
EnterCriticalSection
SetLastError
GetLastError
lstrcpynA
LocalAlloc
TlsAlloc
GlobalFree
GlobalUnlock
GlobalHandle
GlobalLock
GlobalReAlloc
GlobalAlloc
TlsSetValue
LocalReAlloc
TlsGetValue
CloseHandle
GetCurrentThreadId
lstrcpyA
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
lstrcmpiA
GlobalGetAtomNameA
DeleteCriticalSection
GetProcessVersion
lstrcmpA
GlobalFlags
GetCPInfo
GetOEMCP
GetCurrentProcess
WriteFile
SetFilePointer
FlushFileBuffers
RtlUnwind
RaiseException
HeapSize
HeapReAlloc
GetACP
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
VirtualFree
LCMapStringA
LCMapStringW
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
InitializeCriticalSection
MultiByteToWideChar
WideCharToMultiByte
lstrlenA
GetSystemDirectoryA
InterlockedDecrement
LoadLibraryA
GetProcAddress
FreeLibrary
GetCommandLineA
FindResourceA
LoadResource
SizeofResource
LockResource
ExitThread
ReadProcessMemory
WriteProcessMemory
GetVersion
TerminateProcess
WaitForDebugEvent
ContinueDebugEvent
GetStartupInfoA
CreateProcessA
GetExitCodeThread
Sleep
TerminateThread
CreateThread
ResumeThread
GetModuleHandleA
ExitProcess
GetModuleFileNameA
HeapFree
LocalFree
HeapAlloc
HeapDestroy
lstrcatA
HeapCreate

user32

WinHelpA
GetCapture
GetTopWindow
CopyRect
GetClientRect
AdjustWindowRectEx
SetFocus
GetSysColor
MapWindowPoints
SetWindowTextA
GetSysColorBrush
GetClassNameA
PtInRect
ClientToScreen
DestroyMenu
TabbedTextOutA
DrawTextA
GrayStringA
GetMessageTime
GetMessagePos
GetForegroundWindow
GetWindow
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindowRect
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
GetKeyState
CallNextHookEx
SetWindowsHookExA
GetParent
GetLastActivePopup
IsWindowEnabled
GetWindowLongA
SendMessageA
EnableWindow
UnhookWindowsHookEx
LoadStringA
GetClassInfoA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetDlgItem
GetWindowTextA
GetDlgCtrlID
PostMessageA
PeekMessageA
GetGUIThreadInfo
MessageBoxA
DefWindowProcA
DestroyWindow
PostQuitMessage
GetDC
ReleaseDC
GetSystemMetrics
CreateWindowExA
ShowWindow
UpdateWindow
GetClassLongA
SetPropA
GetPropA
CallWindowProcA
LoadIconA
LoadCursorA
RegisterClassA
LoadAcceleratorsA
GetMessageA
TranslateAcceleratorA
TranslateMessage
DispatchMessageA
SetForegroundWindow
RemovePropA

gdi32

SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
GetStockObject
GetTextMetricsA
SelectObject
RestoreDC
SaveDC
DeleteDC
DeleteObject
GetDeviceCaps
GetObjectA
SetBkColor
SetTextColor
GetClipBox
CreateBitmap

comdlg32

GetFileTitleA

shell32

ShellExecuteA

oleaut32

VariantClear

comctl32

ord17

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

Sections

.text
Size: 52KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.sstb
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f8b232278f7707220fef7b22db636303

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

shell32

oleaut32

comctl32

winspool.drv

Sections

.text Size: 52KB - Virtual size: 49KB

.rdata Size: 16KB - Virtual size: 13KB

.data Size: 8KB - Virtual size: 26KB

.rsrc Size: 4KB - Virtual size: 2KB

.sstb Size: 4KB - Virtual size: 4KB

.text
Size: 52KB - Virtual size: 49KB

.rdata
Size: 16KB - Virtual size: 13KB

.data
Size: 8KB - Virtual size: 26KB

.rsrc
Size: 4KB - Virtual size: 2KB

.sstb
Size: 4KB - Virtual size: 4KB