0a0ca361eae2f47e1e05cce9052b97c7_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0a0ca361eae2f47e1e05cce9052b97c7_JaffaCakes118
Size

80KB
MD5

0a0ca361eae2f47e1e05cce9052b97c7
SHA1

5cc07a2394755c3343449cb7e5c2a302ea9e816c
SHA256

e9d48ed54b047bc57d7868727316162cdaab6ada3dfb88db4a28634b480be10a
SHA512

8387820210b30404f81d2b99383c632e7e55377585773f6ecd6aa2fb1cec4219c1bd00e9d2a9fc26fafd0dd2768e2c59111dc872470492095e5f3db94e86189f
SSDEEP

1536:lkUFalqIw4q0dOhlol+rkhliJWhMmiY79slWRX2rf1Wos7E3W0kuJI:9IJAlolhhBhbJ79s0AL1yE3W0ku

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0a0ca361eae2f47e1e05cce9052b97c7_JaffaCakes118

Files

0a0ca361eae2f47e1e05cce9052b97c7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

49637754cf7291130e5076e89435e324

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCompressedFileSizeA
FileTimeToLocalFileTime
OutputDebugStringA
GetPrivateProfileIntA
GetDateFormatA
OpenSemaphoreW
GetPrivateProfileStringA
ExitProcess
FindResourceA
LoadLibraryA
VirtualAlloc
ConvertThreadToFiber
GetExitCodeThread
GetEnvironmentVariableA
SetFileTime
EnumResourceTypesA
GetModuleHandleW
GetLastError
GetPrivateProfileSectionA
GetUserDefaultUILanguage
GetTempFileNameA
VirtualProtect
FindAtomW
GetModuleHandleA
GetCompressedFileSizeW
MapViewOfFileEx
CreateEventW
LoadResource
FindNextFileA

msvcrt

memcpy
_inpd
__p__winmajor
wcscpy
_beginthread
isspace
isupper
isalnum
_fmode
_filelengthi64
_safe_fdivr
ispunct
isprint
_setsystime
_amsg_exit

user32

CopyRect
EnumDesktopWindows
CreateWindowExW
EmptyClipboard
ModifyMenuW
GetWindowTextLengthW
EnumDisplayMonitors
GetWindowTextW
CreateDialogParamW
MoveWindow
LoadStringA
AdjustWindowRect
GetDlgItemInt
CloseClipboard
OpenIcon
GetSysColor
TrackPopupMenu
CheckMenuRadioItem
GetMenuState
GetMonitorInfoW

gdi32

GetNearestColor
GetTextFaceW
GetDIBits
SetTextColor
SetBrushOrgEx
GetCurrentObject
GetBrushOrgEx
SetStretchBltMode
Polygon
MoveToEx
CombineRgn
LineTo
GetPixel

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 736B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.debug
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_MEM_READ

.rsrc
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 146B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

49637754cf7291130e5076e89435e324

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

gdi32

Sections

.text Size: 28KB - Virtual size: 27KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 1024B - Virtual size: 736B

.debug Size: 1KB - Virtual size: 1KB

.rsrc Size: 45KB - Virtual size: 45KB

.reloc Size: 512B - Virtual size: 146B

.text
Size: 28KB - Virtual size: 27KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 1024B - Virtual size: 736B

.debug
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 45KB - Virtual size: 45KB

.reloc
Size: 512B - Virtual size: 146B