0cb2acdad5107c74139c7a3fc18f6631_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0cb2acdad5107c74139c7a3fc18f6631_JaffaCakes118
Size

184KB
MD5

0cb2acdad5107c74139c7a3fc18f6631
SHA1

d164a680546074980279a6463faffaffe6c12216
SHA256

c980d1549ea5bca4156af8acea255cad9289456a9ed47cdf82e819ddc45730b4
SHA512

f771fe72778c6b3ee3123e4c617539cd9aec6644857107cebdb5f02b4467bfd19f1e1c4535b83f38b7145a6db1c44076bfb1b31ce1891259d431591777339647
SSDEEP

3072:nMgrClu2+c3PjxRk+BoV60ZAdRXFcclkzPY4SSpSUcm3e1fLWVs:n74uwjxBlcc8YgsUAzws

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0cb2acdad5107c74139c7a3fc18f6631_JaffaCakes118

Files

0cb2acdad5107c74139c7a3fc18f6631_JaffaCakes118
.exe windows:4 windows x86 arch:x86

34446ced89881205c207dd2cd72fc4e2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

gdi32

RoundRect
GetBkColor
AnimatePalette
PolyBezier
GetPath
GetBitmapBits
CreatePen
StrokePath
FlattenPath
CreateFontIndirectA
PlgBlt
SetTextColor
SetStretchBltMode
ExtCreatePen
SetDIBits

kernel32

CreateFiberEx
SearchPathW
IsDBCSLeadByte
LockFile
LocalAlloc
GetFileTime
SetCommConfig
UnlockFile
FileTimeToSystemTime
GetFileType
EnumResourceNamesW
FindResourceExA
FileTimeToLocalFileTime
GetVolumeInformationW
FlushFileBuffers
GetProfileStringW
FlushFileBuffers
GetVersionExW
GetSystemTime
VerLanguageNameW
CompareStringW
GetUserDefaultLangID
GetFileAttributesA
SetEndOfFile
GetSystemDirectoryW

user32

DestroyIcon
RegisterClassW
EmptyClipboard
DrawEdge
CallNextHookEx
UnhookWindowsHookEx
DestroyCursor
WinHelpW
SetClipboardData
MonitorFromWindow
SetScrollRange
ChildWindowFromPoint
SetWindowPos
SetWindowsHookExW
IsClipboardFormatAvailable
DefWindowProcW
ToAscii
ClipCursor
GetSysColorBrush
GetSysColor

rpcrt4

RpcStringBindingComposeA
NdrClientCall
RpcBindingSetAuthInfoA
RpcBindingFromStringBindingA
RpcStringFreeA

comdlg32

GetFileTitleA

comctl32

ImageList_Add
ImageList_GetIconSize
ImageList_DrawEx
ImageList_Create
ImageList_Destroy

ole32

ProgIDFromCLSID
CreateStreamOnHGlobal
StgOpenStorageOnILockBytes
CLSIDFromString
CoCreateGuid
CLSIDFromProgID
StgCreateDocfileOnILockBytes
GetHGlobalFromILockBytes
RegisterDragDrop
CoTaskMemAlloc
CoFreeUnusedLibraries
RevokeDragDrop
OleGetAutoConvert
OleRun
CoCreateInstance
OleRegGetUserType
CoGetMalloc
GetHGlobalFromStream
StringFromCLSID
ReleaseStgMedium
CoTaskMemFree
CoGetClassObject
OleDuplicateData
CreateILockBytesOnHGlobal

shlwapi

PathCanonicalizeW
PathIsRootW
PathStripToRootW
PathIsRelativeW
PathIsURLW
PathCombineW

Sections

.text
Size: 159KB - Virtual size: 159KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lib
Size: 512B - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

34446ced89881205c207dd2cd72fc4e2

Headers

File Characteristics

Imports

gdi32

kernel32

user32

rpcrt4

comdlg32

comctl32

ole32

shlwapi

Sections

.text Size: 159KB - Virtual size: 159KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 20KB - Virtual size: 20KB

.lib Size: 512B - Virtual size: 76KB

.text
Size: 159KB - Virtual size: 159KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 20KB - Virtual size: 20KB

.lib
Size: 512B - Virtual size: 76KB