0a5737d0bf29aaf019632569771c7aab_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

0a5737d0bf29aaf019632569771c7aab_JaffaCakes118
Size

500KB
MD5

0a5737d0bf29aaf019632569771c7aab
SHA1

3041f1628e44bae9b3629ae86ac4678917d662e9
SHA256

6ada9afce3f01c6ffe07f5730bc0b137b3c76027a8e6b21231c60d1782b169aa
SHA512

ba24dadb810f85652d4d452e5826f65f99f7c3b0fdf64154efed376f87b7bc013c44f92124bcec274cd62b40e1c5069b41597bf3a9adcdef85a7948c2b9d698c
SSDEEP

12288:E+LSM+TVxCD5UVr2SmvAYmRklcEaF8hRb0I5r9N:rUeD+2SqAYPcEaERQ8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0a5737d0bf29aaf019632569771c7aab_JaffaCakes118

Files

0a5737d0bf29aaf019632569771c7aab_JaffaCakes118
.exe windows:4 windows x86 arch:x86

23302bf91a55c6d316ccb66ea52a2700

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CreateWindowExA
GetFocus
CallWindowProcA
DrawTextA
PostQuitMessage
IsWindow
EndPaint
GetDC
ReleaseDC
TranslateMessage
SendMessageA
DestroyWindow
GetMessageA
UpdateWindow
ShowWindow
PeekMessageA
SetWindowPos
IsWindowEnabled
GetWindow
LoadStringA
RegisterClassA
GetWindowLongA
SetCursor
FillRect
DispatchMessageA
SetFocus
BeginPaint
DefWindowProcA
GetSystemMetrics
GetWindowRect
SetWindowLongA
SetWindowTextA
GetDlgItem
ScreenToClient
LoadCursorA
TrackPopupMenu
GetDesktopWindow
SetForegroundWindow
MoveWindow
MessageBoxA
GetSysColor
InvalidateRect

ole32

CoCreateInstance
CoUninitialize
CoTaskMemAlloc

advapi32

OpenProcessToken
RegCloseKey
RegDeleteValueW
RegDeleteKeyA

kernel32

WaitForSingleObject
GetDriveTypeA
FindFirstFileW
HeapDestroy
HeapFree
GetFileAttributesW
GetExitCodeProcess
FreeEnvironmentStringsA
DeleteCriticalSection
GetCurrentProcess
GetCurrentDirectoryA
GetConsoleMode
LocalAlloc
GetEnvironmentStrings
FreeEnvironmentStringsW
GetFileAttributesA
LoadLibraryW
GetStringTypeA
GetSystemTimeAsFileTime
WriteFile
SetStdHandle
HeapReAlloc
GetStringTypeW
FreeLibrary
LocalFree
InitializeCriticalSection
LoadResource
GlobalLock
FindClose
TlsGetValue
FormatMessageA
SetLastError
InterlockedDecrement
lstrlenW
GetModuleFileNameW
VirtualProtect
ReleaseMutex
GetConsoleOutputCP
GetStdHandle
WideCharToMultiByte
VirtualAlloc
FindResourceA
VirtualFree
FindResourceW
UnmapViewOfFile
GetLocalTime
InterlockedExchange
GetModuleHandleW
GetACP
CloseHandle
ReadFile
SetFilePointer
TlsFree
MapViewOfFile
RaiseException
InterlockedCompareExchange
GetCommandLineA
HeapSize
GetCPInfo
GetCommandLineW
GetCurrentProcessId
WritePrivateProfileStringA
SizeofResource
FileTimeToLocalFileTime
CreateProcessW
Sleep
GlobalUnlock
GetEnvironmentStringsW
FindNextFileW
LCMapStringA
GetConsoleCP
GlobalFree
lstrlenA
GetSystemInfo
HeapCreate
LCMapStringW
GetLastError
LeaveCriticalSection
HeapAlloc
TlsSetValue
GetFileType
CreateEventA
CreateFileW
GetTimeZoneInformation
WaitForMultipleObjects
DuplicateHandle
FindNextFileA
ResetEvent
FindFirstFileA
lstrcmpA
CreateFileA
CompareStringW
GetProcessHeap
GetProcAddress
GetEnvironmentVariableA
GetWindowsDirectoryA
DeleteFileA
GetFileSize
GetStartupInfoA
LoadLibraryA
GetVersionExA
TlsAlloc
GetTickCount
QueryPerformanceCounter
SetEvent
lstrcmpiA
SetHandleCount
EnterCriticalSection
WriteConsoleW
InterlockedIncrement
GetCurrentThreadId
GetLocaleInfoA
SetEndOfFile
GlobalAlloc
GetVersion
WriteConsoleA
TerminateProcess
SetEnvironmentVariableA
GetSystemDirectoryA
MulDiv
SetUnhandledExceptionFilter
CreateThread
GetModuleHandleA
CreateMutexA
MultiByteToWideChar
UnhandledExceptionFilter
lstrcmpiW
GetModuleFileNameA
FlushFileBuffers
ExitProcess
IsDebuggerPresent

gdi32

CreateCompatibleDC
GetDeviceCaps
BitBlt
CreateCompatibleBitmap
SelectObject

Sections

.text
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 456KB - Virtual size: 453KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

23302bf91a55c6d316ccb66ea52a2700

Headers

File Characteristics

Imports

user32

ole32

advapi32

kernel32

gdi32

Sections

.text Size: 20KB - Virtual size: 17KB

.rdata Size: 16KB - Virtual size: 15KB

.data Size: 456KB - Virtual size: 453KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 20KB - Virtual size: 17KB

.rdata
Size: 16KB - Virtual size: 15KB

.data
Size: 456KB - Virtual size: 453KB

.rsrc
Size: 4KB - Virtual size: 3KB