02ad9d29ff21f2046b8d705fa50cdb79_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

02ad9d29ff21f2046b8d705fa50cdb79_JaffaCakes118
Size

692KB
MD5

02ad9d29ff21f2046b8d705fa50cdb79
SHA1

2dcf755e4a4a3c37bc53691d81eaf4cda6b8c085
SHA256

b5b25cb528b89e767cf9e77533c1e243656dffcf905671caa2c0e65eded6ed9e
SHA512

0280ad4056133419db1d5ea0c6357d3c7b7893991894ea3f84731bd9d9238638c34f2eab1f8b56fddba6041b5dffac033f50dfe9ad3f79d815b25968b6f43e04
SSDEEP

12288:JLKLKCKgSgZociALAacwIaPH3spRTz74jZiZD4ZSojJ:dKLRKhW0qcu3aRTz7ciZSX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
02ad9d29ff21f2046b8d705fa50cdb79_JaffaCakes118

Files

02ad9d29ff21f2046b8d705fa50cdb79_JaffaCakes118
.exe windows:5 windows x86 arch:x86

c2b672209cae0575b46ab7daa4e32f10

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

DeleteObject
DeleteDC
SetBkColor
GetStockObject

kernel32

VirtualFree
FindResourceW
HeapCreate
CreateProcessA
GetEnvironmentStrings
GetModuleHandleW
GetACP
CloseHandle
ReadFile
GetModuleHandleA
TlsFree
MapViewOfFile
RaiseException
InterlockedCompareExchange
GetCommandLineA
HeapSize
WideCharToMultiByte
LockResource
GetCurrentProcessId
SizeofResource
FileTimeToLocalFileTime
lstrlenW
VirtualQuery
GetEnvironmentStringsW
GetThreadLocale
LCMapStringA
GetConsoleCP
lstrlenA
GetSystemInfo
UnmapViewOfFile
SetStdHandle
GetLastError
LeaveCriticalSection
ExitProcess
CreateFileA
TlsSetValue
GetFileType
CreateEventA
CreateFileW
CreateEventW
RemoveDirectoryA
FindFirstFileW
CreateFileMappingA
CompareStringA
GetCurrentThreadId
FindFirstFileA
GetProcAddress
DeleteFileW
SetErrorMode
DeleteFileA
LCMapStringW
GetFileSize
GetStartupInfoA
LoadLibraryA
FlushFileBuffers
TlsAlloc
GetTickCount
QueryPerformanceCounter
FreeLibrary
LoadLibraryW
EnterCriticalSection
WriteConsoleW
InterlockedIncrement
GetVersion
SetEndOfFile
GlobalAlloc
WriteConsoleA
TerminateProcess
SetEnvironmentVariableA
MulDiv
SetUnhandledExceptionFilter
CreateThread
SetFilePointer
MultiByteToWideChar
UnhandledExceptionFilter
SetHandleCount
GetModuleFileNameA
GetVersionExA
HeapAlloc
IsDebuggerPresent
GetModuleFileNameW
TlsGetValue
SetLastError
GetCurrentThread
FormatMessageA
InterlockedDecrement
FindClose
Sleep
InitializeCriticalSection
LocalFree
SetEvent
GetStringTypeW
HeapReAlloc
GetSystemTimeAsFileTime
WriteFile
InterlockedExchange
GetStringTypeA
GetCPInfo
GetTempPathA
FreeEnvironmentStringsW
LoadLibraryExW
LocalAlloc
GetLocaleInfoA
GetConsoleMode
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
GetExitCodeProcess
GetFileAttributesW
HeapFree
HeapDestroy
WaitForSingleObject
GetFileAttributesA
FileTimeToSystemTime
ReleaseMutex
GetConsoleOutputCP
GetStdHandle
GetProcessHeap
GetEnvironmentVariableA
RtlUnwind
GetOEMCP
VirtualAlloc
FindResourceA
SetConsoleCtrlHandler
LoadResource

user32

ScreenToClient
GetDlgItem
CheckMenuItem
SetWindowTextA
EndDialog
SetWindowLongA
SetCapture
GetWindowRect
GetSystemMetrics
DefWindowProcA
BeginPaint
PostMessageA
SetFocus
DispatchMessageA
FillRect
CreateWindowExA
GetWindowLongA
MessageBeep
LoadStringA
TranslateMessage
SetWindowPos
PeekMessageA
EnableWindow
ShowWindow
UpdateWindow
GetParent
DestroyWindow
ReleaseDC
GetCursorPos
GetDC
IsWindow
PostQuitMessage
MoveWindow
SetForegroundWindow
SetDlgItemTextA
MessageBoxA
DialogBoxParamA
GetSysColor
EnableMenuItem
InvalidateRect
SendMessageA
CallWindowProcA
SetCursor
GetKeyState

oleaut32

VariantInit
SysAllocString
SysStringLen
VariantClear

advapi32

RegDeleteValueA
RegSetValueExW
RegCreateKeyExW
RegCloseKey

Sections

.text
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 628KB - Virtual size: 624KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 712B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c2b672209cae0575b46ab7daa4e32f10

Headers

File Characteristics

Imports

gdi32

kernel32

user32

oleaut32

advapi32

Sections

.text Size: 24KB - Virtual size: 20KB

.rdata Size: 628KB - Virtual size: 624KB

.data Size: 32KB - Virtual size: 31KB

.rsrc Size: 4KB - Virtual size: 712B

.text
Size: 24KB - Virtual size: 20KB

.rdata
Size: 628KB - Virtual size: 624KB

.data
Size: 32KB - Virtual size: 31KB

.rsrc
Size: 4KB - Virtual size: 712B