00e6c75f09775fefded4a2a72ebc0fa6_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

00e6c75f09775fefded4a2a72ebc0fa6_JaffaCakes118
Size

152KB
MD5

00e6c75f09775fefded4a2a72ebc0fa6
SHA1

d9753edf778dd117a17a48c7cd4851697d2cebe0
SHA256

7ae9ff72c28c97cbee36e0c90737a7a67860d3a76b11fce6b4c48304bf44b963
SHA512

87a709e256a57a55254109bfbae2e95f575b7462b25681b4e8e153a6fbcc9706b2c3cce8e78445fce8c3fa9e618e2c1df0c7a94a4a6368c287f6de52f8543b1f
SSDEEP

3072:gnCUwD7OQ+3CIOejeWm7RAKCV3yFjlaGgJ+op3yCa:9mQ+SCm7RA7ViF0fRa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
00e6c75f09775fefded4a2a72ebc0fa6_JaffaCakes118

Files

00e6c75f09775fefded4a2a72ebc0fa6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0fb7428e10c6bf05175fa289e2b64e5b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadFile
WriteFile
EnterCriticalSection
CloseHandle
CreateFileA
FlushInstructionCache
GetModuleHandleA
GetProcAddress
GetVersionExA
InterlockedDecrement
InterlockedIncrement
GetSystemDefaultLangID
lstrcpyA
lstrcatA
MoveFileExA
DeleteFileA
lstrcpynA
FindFirstFileA
GetPrivateProfileIntA
FindNextFileA
FindClose
LocalFree
WritePrivateProfileStringA
FormatMessageA
Sleep
GetTempPathA
RemoveDirectoryA
GetSystemDirectoryA
OutputDebugStringA
DebugBreak
GetComputerNameA
ExitProcess
FreeLibrary
MoveFileA
CreateThread
GetShortPathNameA
InitializeCriticalSection
DeleteCriticalSection
HeapDestroy
CreateMutexA
SetThreadLocale
ReleaseMutex
GetCurrentThreadId
GetLastError
LoadLibraryA
LeaveCriticalSection
GetCurrentProcess
SetStdHandle
SetFilePointer
RtlUnwind
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
TerminateProcess
GetStringTypeW
LCMapStringW
LCMapStringA
lstrlenA
GetStringTypeA
MultiByteToWideChar
WideCharToMultiByte
TlsGetValue
SetLastError
TlsAlloc
TlsSetValue
GetOEMCP
GetACP
GetCPInfo
VirtualAlloc
VirtualFree
HeapCreate
GetVersion
GetCommandLineA
GetStartupInfoA
GetLocalTime
GetSystemTime
GetTimeZoneInformation
HeapFree
HeapAlloc
CompareStringW
HeapReAlloc
FlushFileBuffers
CompareStringA
SetEnvironmentVariableA

user32

SetWindowRgn
ScreenToClient
SetRectEmpty
ShowWindow
PostMessageA
GetWindowTextA
MoveWindow
DrawFrameControl
IsRectEmpty
CopyRect
KillTimer
GetClientRect
MapWindowPoints
InflateRect
RegisterClassExA
SetWindowTextA
GetDC
PtInRect
SetCapture
ReleaseCapture
SetWindowsHookExA
UnhookWindowsHookEx
CallNextHookEx
EndPaint
ReleaseDC
BeginPaint
DrawTextA
wsprintfA
GetCursorPos
SetTimer
UpdateWindow
DefWindowProcA
IsWindow
OffsetRect
SystemParametersInfoA
GetWindowRect
GetSystemMetrics
LoadStringA
LoadCursorA
GetClassInfoExA
SetWindowLongA
GetWindowLongA
CallWindowProcA
CreateWindowExA
FrameRect
FillRect
SendMessageA
GetDlgItem
IsDialogMessageA
MessageBoxA
DispatchMessageA
TranslateMessage
GetMessageA
PeekMessageA
FindWindowA
SendMessageTimeoutA
CharNextA
wvsprintfA
SetDlgItemTextA
EnableWindow
CheckDlgButton
DrawIconEx
PostQuitMessage
GetDlgItemTextA
SetPropA
SetCursor
GetPropA
RemovePropA
GetMenu
AdjustWindowRectEx
SetWindowPos
ClientToScreen
GetDlgCtrlID
GetParent
GetCapture
IsWindowEnabled
DrawEdge
DrawFocusRect
CreateDialogParamA
InvalidateRect
DestroyWindow
LoadImageA
GetWindowDC
IsDlgButtonChecked
GetWindow

gdi32

GetClipBox
GetObjectA
GetStockObject
CreateFontIndirectA
StretchBlt
SetStretchBltMode
DeleteDC
CreateCompatibleBitmap
CreateCompatibleDC
SelectObject
SetBkMode
FrameRgn
SetTextColor
CreateSolidBrush
ExcludeClipRect
OffsetRgn
BitBlt
EqualRgn
SetWindowOrgEx
CreateRectRgn
CreateRoundRectRgn
CombineRgn
SetViewportOrgEx
GetViewportOrgEx
CreatePolygonRgn
SetBkColor
SetPixelV
ExtTextOutA
OffsetWindowOrgEx
SetViewportExtEx
Polygon
SetWindowExtEx
SetMapMode
DeleteObject

advapi32

RegDeleteKeyA
RegCloseKey
RegSetValueExA
RegCreateKeyExA
RegOpenKeyExA
RegDeleteValueA
RegEnumKeyExA
RegEnumValueA
RegQueryInfoKeyA
RegQueryValueExA
FreeSid

shell32

ShellExecuteA

ole32

OleInitialize
OleUninitialize
CoInitialize
CoUninitialize

oleaut32

OleTranslateColor

shlwapi

SHSetValueA
SHGetValueA
SHDeleteKeyA

comctl32

InitCommonControlsEx
ImageList_Create
ImageList_Draw
ImageList_Destroy
ImageList_AddMasked
ImageList_SetBkColor
ImageList_GetIconSize
_TrackMouseEvent
ImageList_LoadImageA

Sections

.text
Size: 76KB - Virtual size: 73KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0fb7428e10c6bf05175fa289e2b64e5b

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

shlwapi

comctl32

Sections

.text Size: 76KB - Virtual size: 73KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 36KB - Virtual size: 40KB

.rsrc Size: 28KB - Virtual size: 26KB

.text
Size: 76KB - Virtual size: 73KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 36KB - Virtual size: 40KB

.rsrc
Size: 28KB - Virtual size: 26KB