f0a7564eb00aa6a090cb79ca9b09b62e_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f0a7564eb00aa6a090cb79ca9b09b62e_JaffaCakes118
Size

2.1MB
MD5

f0a7564eb00aa6a090cb79ca9b09b62e
SHA1

65fa10ca3484afb96cec737f44ff968657eadf84
SHA256

9d708e25abd0c35ba133924a145b6ae57729cb468b74ea0e36030630934b0406
SHA512

3003cc64893f24b76dfad5589c4e31792d50ab744786370333d1e62eb07be65be417b1711254d224e043b91f116b27881fdaa8e09fe90fb2923379a539d52ecb
SSDEEP

49152:TOraNPHyr2bGE/kwQFVXCfxsM7QAGX20HHKEcFFDSytsNx6oX:TSr2j/NQzXJOQGiKtg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f0a7564eb00aa6a090cb79ca9b09b62e_JaffaCakes118

Files

f0a7564eb00aa6a090cb79ca9b09b62e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

19e2e7087b5b44189a3eb41638028a5a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

msvcrt

srand
sprintf
wcscspn
time
wcstol
exit
sqrt
wcsncmp
tolower

advapi32

RegEnumValueA
RegEnumKeyExA
RegEnumKeyA
RegDeleteValueA

comctl32

ImageList_Remove
ImageList_Draw
ImageList_Add
ImageList_Create
ImageList_Destroy
ImageList_Write
ImageList_GetBkColor
ImageList_Read
ImageList_DragShowNolock

shlwapi

PathIsDirectoryA

ole32

CoGetContextToken
PropVariantClear
CoRevokeClassObject
StgOpenStorage
OleRegGetUserType
CreateBindCtx
GetHGlobalFromStream
CLSIDFromProgID
CoUnmarshalInterface

gdi32

CreateDIBSection
CreateBrushIndirect
SetTextColor
GetTextColor
SelectPalette

kernel32

lstrcmpiA
lstrlenA
MoveFileA
VirtualAlloc

version

VerInstallFileA
GetFileVersionInfoA
VerFindFileA

comdlg32

FindTextA
GetFileTitleA

oleaut32

SysStringLen
SafeArrayPtrOfIndex
SysFreeString
GetErrorInfo
OleLoadPicture
SafeArrayCreate
SysAllocStringLen
VariantCopyInd
SafeArrayGetUBound

user32

DefFrameProcA
EmptyClipboard
GetCursor
LoadKeyboardLayoutA
RemoveMenu
UnhookWindowsHookEx
GetCapture
GetKeyboardState
SetCursor
PostQuitMessage
GetScrollPos
SetFocus
SetMenuItemInfoA
GetKeyboardLayoutNameA
GetWindowTextA
MapVirtualKeyA
MessageBoxA
InsertMenuItemA
CharUpperA
ReleaseDC
EqualRect
GetPropA
IsChild
GetDC
GetMenuItemID
ReleaseCapture
UnregisterClassA
SetWindowLongA
GetCursorPos
GetScrollRange
GetMenuState
CharLowerBuffA
GetDCEx
GetKeyboardType
PtInRect
GetWindowLongW
CreateWindowExA
DeleteMenu
IsDialogMessageW
ScreenToClient
LoadCursorA
GetDlgItem
GetSysColor
GetClipboardData
WaitMessage
IsWindow
FillRect
DrawEdge
IsIconic
FrameRect
GetSystemMenu
InsertMenuA
CheckMenuItem
DrawIconEx
MoveWindow
SetWindowsHookExA
ShowOwnedPopups
GetKeyboardLayout
IsWindowUnicode
LoadBitmapA
EnableWindow
ActivateKeyboardLayout
DrawFrameControl
CharToOemA
FindWindowA
CreateIcon
SetClipboardData
LoadIconA
GetSubMenu
OpenClipboard
CreateMenu
DestroyMenu
GetSystemMetrics
DrawAnimatedRects
GetClassLongA
CharNextA
RegisterClassA
GetTopWindow
CloseClipboard
BeginPaint
GetWindowTextLengthA
DrawMenuBar
SetCapture
wsprintfA
GetForegroundWindow
IsCharLowerA
SetActiveWindow
IsDialogMessageA
TrackPopupMenu
InflateRect
RemovePropA
GetMessagePos
ShowScrollBar
GetClassNameA
KillTimer
MapWindowPoints
OffsetRect
SetPropA
IsCharUpperA
DestroyWindow
SetWindowPos
MessageBeep
SetTimer
EnableScrollBar
PostMessageA
DrawIcon
MsgWaitForMultipleObjects
ScrollWindow
GetIconInfo
CharUpperBuffA
GetWindowDC
IsZoomed
IsWindowVisible
DefMDIChildProcA
IntersectRect

Exports

Exports

d
uq
I@4
_b3i

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2.0MB - Virtual size: 7.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 266B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

19e2e7087b5b44189a3eb41638028a5a

Headers

File Characteristics

Imports

msvcrt

advapi32

comctl32

shlwapi

ole32

gdi32

kernel32

version

comdlg32

oleaut32

user32

Exports

Exports

Sections

.text Size: 11KB - Virtual size: 10KB

.data Size: 2.0MB - Virtual size: 7.3MB

.tls Size: 2KB - Virtual size: 1KB

.rdata Size: 512B - Virtual size: 266B

.idata Size: 4KB - Virtual size: 4KB

.rsrc Size: 15KB - Virtual size: 15KB

.text
Size: 11KB - Virtual size: 10KB

.data
Size: 2.0MB - Virtual size: 7.3MB

.tls
Size: 2KB - Virtual size: 1KB

.rdata
Size: 512B - Virtual size: 266B

.idata
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 15KB - Virtual size: 15KB