0a30c0368c4210134911c84f1c472d59_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0a30c0368c4210134911c84f1c472d59_JaffaCakes118
Size

319KB
MD5

0a30c0368c4210134911c84f1c472d59
SHA1

ca9568d5aa11f38fe723b83e4bb2f931c08122e5
SHA256

b6b81533abfde57943ba55a02db77dc88b17e64587e85e9cf05170b4f507fd9f
SHA512

0765eb4cedb03bf6c4bb7c0d351efc81b9808dbedfbac21bbb6dd5ebf0a38b69c2e9355aa740f40f4c9b1e9a37020f1395f1bfd0dceefcf78e391a56c1bd1eb9
SSDEEP

6144:KP6lMuq9LFV5pPGrQ+15bCJLR+Mvr3VxanHtEBgPuveLKIX9A4vWDGQJctg:KClFqLV3GcysHFaiUKuvWDa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0a30c0368c4210134911c84f1c472d59_JaffaCakes118

Files

0a30c0368c4210134911c84f1c472d59_JaffaCakes118
.exe windows:0 windows x86 arch:x86

021597eb2651978a67aea7f0ae867e9b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetLastError
GetProcessHeap
FindClose
GetFileSize
lstrcmpW
MulDiv
lstrlenA
GetCurrentThreadId
lstrcpyW
LoadLibraryA
TerminateProcess
GetNumberFormatW
GetModuleHandleA
FindFirstFileW
GlobalLock
QueryPerformanceCounter
GlobalFree
GetCurrentProcessId
GlobalUnlock
GetModuleHandleW
GetFileTime
HeapAlloc
GetLocaleInfoW
InterlockedIncrement
FileTimeToSystemTime
GetTimeFormatW
GetDateFormatW
GetACP
GetProcessHeaps
CreateFileW
InterlockedExchange
RaiseException
GetStartupInfoW
IsDBCSLeadByte
LocalFree
GetFileAttributesW
LocalAlloc
SetEndOfFile
GetSystemTimeAsFileTime
HeapSize
VirtualAlloc
lstrcpynW
lstrcmpiW
MultiByteToWideChar
GlobalAlloc
CloseHandle
GlobalReAlloc
SetUnhandledExceptionFilter
GetTempFileNameW
VirtualFree
GetCurrentProcess
SetErrorMode
CreateDirectoryW
lstrcatW
GetExitCodeThread
GetThreadLocale
lstrlenW
UnhandledExceptionFilter
LoadLibraryW
FileTimeToLocalFileTime
InterlockedDecrement
GetTempPathW
GetProcAddress
GetTickCount
FreeLibrary

msvcrt

__dllonexit
__argc
wcscat
_XcptFilter
__CxxFrameHandler
_c_exit
_initterm
__wargv
free
_itow
rand
_wcsdup
__set_app_type
wcscmp
_except_handler3
_controlfp
_ltow
_cexit
_onexit
_beginthreadex
_getdcwd
_wcsicmp
exit
_CxxThrowException
_wtoi
_purecall
wcschr
_wcmdln
__p__commode
__wgetmainargs
_wsplitpath
__setusermatherr
_adjust_fdiv
_wtol
_exit
__p__fmode
wcstok

user32

TranslateMessage
GetMessageA
SendMessageA
DestroyWindow
RegisterClassExA
DispatchMessageA
DefWindowProcA
CreateWindowExA
UpdateWindow
ShowWindow

gdi32

CreateICW
PlayMetaFile
SetPaletteEntries
SetDIBitsToDevice
CreateFontIndirectW
FillRgn
GetPixel
GetDIBits
CreateDIBitmap
GetNearestPaletteIndex
GetPaletteEntries
ExtFloodFill
CreatePalette
GetTextExtentPoint32W
CreateDCW
Rectangle
CreatePolygonRgn
SelectPalette
SetPixel
GetObjectW
DeleteObject
SaveDC
GetCurrentObject
ResizePalette
SetDIBColorTable
SetBkMode
OffsetRgn
Ellipse
PolyBezier
TranslateCharsetInfo
CreateSolidBrush
GetStockObject
RectVisible
PtVisible
BitBlt
StretchBlt
EnumFontFamiliesW
UnrealizeObject
GetBkMode
GetDeviceCaps
SelectObject
RestoreDC
SetBrushOrgEx
GetNearestColor
SetStretchBltMode
SetROP2
CreatePen
CreateBitmap
SetMapMode
CreateDIBSection
CreateHalftonePalette
StretchDIBits
GetDIBColorTable
Escape
RealizePalette
SetTextAlign
ExtTextOutW
CreateCompatibleBitmap
SetTextColor
DeleteDC
Polygon
GetTextMetricsW
SetDIBits
CreatePatternBrush
SetViewportExtEx
LPtoDP
PatBlt
LineTo
GetTextColor
SetBkColor
CreateRectRgnIndirect
Polyline
CreateCompatibleDC
MoveToEx
EnumFontFamiliesExW
RoundRect
TextOutW

Sections

.text
Size: 176KB - Virtual size: 176KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 136KB - Virtual size: 812KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

021597eb2651978a67aea7f0ae867e9b

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

gdi32

Sections

.text Size: 176KB - Virtual size: 176KB

.data Size: 6KB - Virtual size: 5KB

.rsrc Size: 136KB - Virtual size: 812KB

.text
Size: 176KB - Virtual size: 176KB

.data
Size: 6KB - Virtual size: 5KB

.rsrc
Size: 136KB - Virtual size: 812KB