07dc7dd476e1513c430bce0d95a41b50_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

07dc7dd476e1513c430bce0d95a41b50_JaffaCakes118
Size

648KB
MD5

07dc7dd476e1513c430bce0d95a41b50
SHA1

0fd79203ea052d11fd2fbd54c822b56ccd24d7b2
SHA256

3e306006adcd3d80df47049aeb5c178a2325a2c6738f1af6ab9feaa4348079f3
SHA512

69b38954d9cc50250d474c05f13a1a278ef1e0da2ef7930c2cf68757d706449ba08727afdf3f9cdf2a18077ad6e5ccec93586ab06d27c737656a4c4eecc7bff1
SSDEEP

12288:mIzqjNyOu609ktkPggsAgxx+en5lxW2UsnFQ6LTTsiZ9pXHF:py01r+YIxq3O3n9FF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
07dc7dd476e1513c430bce0d95a41b50_JaffaCakes118

Files

07dc7dd476e1513c430bce0d95a41b50_JaffaCakes118
.exe windows:4 windows x86 arch:x86

efa373b19a3d8ff356a62ccd155ce77d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetHandleInformation
LoadLibraryA
VirtualAlloc
GetModuleHandleA
GetLocalTime
SetCalendarInfoA
GetVersion
IsValidLocale
SetFilePointerEx
EnumCalendarInfoW
FlushConsoleInputBuffer
WritePrivateProfileSectionW
GetSystemTime
_lcreat
UpdateResourceA
FindFirstVolumeMountPointA
GetProcAddress
FreeLibrary
GetConsoleAliasExesLengthW

shell32

StrRChrA
StrStrIA

shlwapi

PathMakePrettyW
PathIsSystemFolderW
SHDeleteOrphanKeyA
UrlIsNoHistoryW
SHRegCreateUSKeyW
PathRemoveFileSpecA
PathIsFileSpecA
SHDeleteEmptyKeyW
StrFromTimeIntervalA
SHRegGetUSValueA
PathCompactPathExA
PathFindNextComponentW
StrCmpW
StrTrimA
SHDeleteOrphanKeyW
SHRegQueryUSValueW
PathFindOnPathA
PathAddExtensionW
PathFindNextComponentA
PathStripPathA
PathGetArgsA
PathSearchAndQualifyW
PathIsSystemFolderA
GetMenuPosFromID
StrFormatByteSizeW
StrCSpnW
PathIsContentTypeA
PathFindFileNameW
SHDeleteEmptyKeyA
UrlGetLocationW
StrCatW
PathRelativePathToW
SHDeleteValueW
SHQueryInfoKeyW
PathRemoveFileSpecW
StrToIntExA
PathRemoveArgsW
SHRegWriteUSValueW
SHGetValueA
PathCreateFromUrlA
SHRegDeleteUSValueW
PathMatchSpecW
PathSkipRootA
PathIsUNCServerShareA

opengl32

wglDeleteContext
glTexGenf
glColor4ub
glClear
glBitmap
glRotated
wglMakeCurrent
glDeleteTextures
glVertex3i
glTexSubImage2D
wglCreateContext
glVertex2dv
glPixelStorei
glScalef
glGenLists
wglGetPixelFormat
glInitNames
glIndexs
glRasterPos4fv
glRenderMode
glGetTexParameterfv

msvcrt

_ismbckata
_unlink
fprintf
memset
fsetpos
fputs
fread
fopen
feof
ftell
fwprintf
fseek
fwrite
fputc
sprintf
printf
ferror
fclose

Sections

.text
Size: 632KB - Virtual size: 628KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

efa373b19a3d8ff356a62ccd155ce77d

Headers

File Characteristics

Imports

kernel32

shell32

shlwapi

opengl32

msvcrt

Sections

.text Size: 632KB - Virtual size: 628KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 8KB - Virtual size: 6KB

.text
Size: 632KB - Virtual size: 628KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 8KB - Virtual size: 6KB