07bff1a566aa8d711bbec6c8332a911a_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

07bff1a566aa8d711bbec6c8332a911a_JaffaCakes118
Size

326KB
MD5

07bff1a566aa8d711bbec6c8332a911a
SHA1

e838b2a835660f0a8d7e71b07d756c143e0ef997
SHA256

a9c41aad22f5befeeffe23b1e314ee73af986c4ec4e99e41dd420425d7ec9a4d
SHA512

425d99cb58812c0d1d8c185acf1774c29e402992fb1bde97ad34a84be259fae68f7e64f8636ae4c8e34a429e89815333bdc09c6df5af29824bebb9c728c7cb74
SSDEEP

6144:eDcpj2LTvsaKzPUs1HrH845dqc3GMeaMndLK+ze+q7oqvaEcoV1d:0cMWZHI6dXCdnd+qeFcjuV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
07bff1a566aa8d711bbec6c8332a911a_JaffaCakes118

Files

07bff1a566aa8d711bbec6c8332a911a_JaffaCakes118
.exe windows:5 windows x86 arch:x86

16c6d9d6bca8b68837201877f65d6410

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CallWindowProcW
DestroyWindow
SetWindowLongW
GetDlgItem
SetWindowTextW
SetScrollPos
CreateWindowExW
GetWindowTextW
EndDialog
GetDC
MoveWindow
MessageBoxW
GetWindowRect
EnableWindow
GetParent
SetWindowPos
GetWindowLongW
RegisterClassA
GetDlgItemTextW
DrawTextW
SetDlgItemTextW
GetScrollInfo
LoadCursorW
ReleaseDC
GetClientRect
LoadStringW
CreateWindowExA
DialogBoxParamW
ShowWindow
DefWindowProcW
SetScrollRange
UnregisterClassA
SendMessageW

kernel32

LeaveCriticalSection
lstrcmpW
GlobalFree
GetCurrentProcess
WritePrivateProfileStringW
SetLastError
AddAtomA
lstrcmpiW
InterlockedExchange
HeapAlloc
SetFilePointer
DisableThreadLibraryCalls
GetModuleFileNameW
EnterCriticalSection
SearchPathW
FindAtomA
DeleteCriticalSection
GetCurrentThreadId
CreateFileMappingW
MultiByteToWideChar
DeleteAtom
GetFileSize
UnmapViewOfFile
LocalAlloc
HeapReAlloc
GetUserDefaultUILanguage
lstrlenA
LoadResource
RtlUnwind
GetPrivateProfileSectionW
GetPrivateProfileSectionA
LoadLibraryExW
GetProcessHeap
FindResourceExW
GetPrivateProfileStringW
GetPrivateProfileStringA
GetCurrentProcessId
SetUnhandledExceptionFilter
FindResourceW
TerminateProcess
WideCharToMultiByte
WritePrivateProfileSectionW
lstrlenW
GetSystemTimeAsFileTime
GetTickCount
UnhandledExceptionFilter
CloseHandle
MapViewOfFile
LocalFree
FreeLibrary
ReadFile
CompareStringW
WritePrivateProfileSectionA
GlobalAlloc
GetVersionExW
InterlockedDecrement
CreateFileW
FormatMessageW
GetFileAttributesW
Sleep
HeapFree
QueryPerformanceCounter
GetLastError
WriteFile
InterlockedCompareExchange
InitializeCriticalSection
GetSystemDefaultUILanguage

advapi32

RegOpenKeyExW
RegQueryValueExW
RegCloseKey

shlwapi

StrCSpnW
StrToIntW
StrRChrW
StrCmpIW
StrSpnW
StrDupW
StrCmpW
StrCmpNW
PathFindFileNameW

samlib

SamAddMemberToAlias

ntdll

NtAllocateVirtualMemory

msvcrt

_amsg_exit
malloc
memcpy
free
_CxxThrowException
_vsnwprintf
_adjust_fdiv
_XcptFilter
_wcsnicmp
_initterm
bsearch
memset
_wcsicmp

gdi32

GetStockObject
GetDeviceCaps
GetTextExtentPoint32W
GetTextMetricsW
DeleteObject
CreateFontIndirectW
SelectObject

ole32

CoCreateInstance
CoTaskMemFree
CoTaskMemRealloc
CoTaskMemAlloc

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 292KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

16c6d9d6bca8b68837201877f65d6410

Headers

DLL Characteristics

File Characteristics

Imports

user32

kernel32

advapi32

shlwapi

samlib

ntdll

msvcrt

gdi32

ole32

Sections

.text Size: 4KB - Virtual size: 4KB

.data Size: 292KB - Virtual size: 1.4MB

.tls Size: 512B - Virtual size: 4KB

.rsrc Size: 24KB - Virtual size: 24KB

.rdata Size: 3KB - Virtual size: 3KB

.text
Size: 4KB - Virtual size: 4KB

.data
Size: 292KB - Virtual size: 1.4MB

.tls
Size: 512B - Virtual size: 4KB

.rsrc
Size: 24KB - Virtual size: 24KB

.rdata
Size: 3KB - Virtual size: 3KB