0cb23fd89162de815e70f8f5dd323d99_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0cb23fd89162de815e70f8f5dd323d99_JaffaCakes118
Size

246KB
MD5

0cb23fd89162de815e70f8f5dd323d99
SHA1

0a91208f5c378b4b374ee991c05d3ed57859c80e
SHA256

3e5480b19f50b0c263f39a247d5a5ba1d8019763e231a9c3b6db4b0c53c1d8e2
SHA512

f7a4fa22ecad5966358a798d56a63814d711da475acd2f4d9e7f208fb78769c52fdf1d4d3423da06ff82e6b679efc0c069c7cd97d65e4dff91ac9b7266146c4c
SSDEEP

6144:98jiijMBTc0wYh6pqd8yxbheBU4PzzVQ:9Pijqc0wpqd8SeB97

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0cb23fd89162de815e70f8f5dd323d99_JaffaCakes118

Files

0cb23fd89162de815e70f8f5dd323d99_JaffaCakes118
.exe windows:5 windows x86 arch:x86

416bc9d474cd1926ff30374f98da1b47

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDlgItem
MsgWaitForMultipleObjects
LoadStringW
SendMessageW
EnableWindow
PeekMessageW
DispatchMessageW
IsWindow
GetSystemMetrics
ShowCursor
LoadCursorW
SetCursor
LoadImageW
LoadBitmapW
RegisterClipboardFormatW
GetParent
wsprintfW
LoadIconW
PostMessageW
SetDlgItemTextW
SetFocus
InvalidateRect
UpdateWindow
WinHelpW
SetWindowLongW

rasapi32

RasDeleteEntryW
RasSetAutodialAddressW
RasRenameEntryW
RasEnumConnectionsW
RasHangUpW
RasGetConnectStatusW
RasValidateEntryNameW

advapi32

InitializeSecurityDescriptor
SetSecurityDescriptorDacl
SetFileSecurityW
InitializeAcl
GetAce
LookupAccountSidW
RegSetValueExA
RegSetValueExW
RegCreateKeyExA
RegOpenKeyExA
RegQueryValueExW
RegQueryValueExA
RegCloseKey
AddAccessAllowedAce

utildll

StrConnectState
StrAsyncConnectState

kernel32

GetProcessAffinityMask
OpenProcess
MultiByteToWideChar
GetThreadTimes
GetModuleHandleA
GetPriorityClass
lstrcmpW
SetEvent
CreateEventW
GetComputerNameW
Sleep
FreeLibrary
SetProcessAffinityMask
LoadLibraryA
QueryPerformanceCounter
GetSystemTimeAsFileTime
GetCurrentDirectoryW
SetUnhandledExceptionFilter
GetTickCount
HeapSize
GetProcAddress
GetNumberFormatW
HeapReAlloc
lstrlenW
GetCurrentProcess
SetPriorityClass
GetCommandLineW
GetStartupInfoW
GetModuleHandleW
ExitProcess
CreateMutexW
GetCurrentProcessId
ProcessIdToSessionId
ReleaseMutex
SetProcessShutdownParameters
WaitForSingleObject
ExpandEnvironmentStringsW
CreateProcessW
GetCurrentThreadId
FormatMessageW
GetVersionExW
GetLocaleInfoW
LocalAlloc
LocalFree
HeapFree
HeapAlloc
GetProcessHeap
CreateThread
CloseHandle
lstrcpynW
lstrcpyW
GetLastError
LoadLibraryW
InterlockedCompareExchange
GetVersionExA
IsBadWritePtr
SetLastError
GetCurrentThread
DelayLoadFailureHook
UnhandledExceptionFilter

Sections

.text
Size: 65KB - Virtual size: 65KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.sec0
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dat0
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 154KB - Virtual size: 159KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.inte
Size: 3KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

416bc9d474cd1926ff30374f98da1b47

Headers

File Characteristics

Imports

user32

rasapi32

advapi32

utildll

kernel32

Sections

.text Size: 65KB - Virtual size: 65KB

.idata Size: 3KB - Virtual size: 2KB

.sec0 Size: 1KB - Virtual size: 4KB

.dat0 Size: 1KB - Virtual size: 4KB

.data Size: 154KB - Virtual size: 159KB

.inte Size: 3KB - Virtual size: 9KB

.rsrc Size: 12KB - Virtual size: 12KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 65KB - Virtual size: 65KB

.idata
Size: 3KB - Virtual size: 2KB

.sec0
Size: 1KB - Virtual size: 4KB

.dat0
Size: 1KB - Virtual size: 4KB

.data
Size: 154KB - Virtual size: 159KB

.inte
Size: 3KB - Virtual size: 9KB

.rsrc
Size: 12KB - Virtual size: 12KB

.reloc
Size: 2KB - Virtual size: 2KB