0a76216ceac52c2614f957437abc7b9d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0a76216ceac52c2614f957437abc7b9d_JaffaCakes118
Size

152KB
MD5

0a76216ceac52c2614f957437abc7b9d
SHA1

253609f1cf8bd243a097082abb490a5609e79da1
SHA256

4711e73af6309304571a9aeb541b36e4f08dbccd3055a2dab7aaf5c677d0a9df
SHA512

eb7dbc6be71d167a40c30f9cea1d68746b11dcfdf55080081b11642413a9f41e074553555621aa0cebb0f9b9e3b90ff7f8912292ac3856ee5999a2b8cd5707bc
SSDEEP

3072:URBqmwsEXGfFG0jGLnLEq55CWXuvJxFhs5/uHIKc:Ikx2vjGLnLfmWX2JxFYu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0a76216ceac52c2614f957437abc7b9d_JaffaCakes118

Files

0a76216ceac52c2614f957437abc7b9d_JaffaCakes118
.exe windows:5 windows x86 arch:x86

a072a59e64ae5e597b120c735fab304f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

M:\lxswozm\twzwUflwbWS\oTdoBzlms.pdb

Imports

user32

wsprintfA
AdjustWindowRect
wsprintfW
OpenInputDesktop
CharLowerW
GetDC
GetClientRect
SwitchToThisWindow
IsCharAlphaA

shlwapi

UrlGetLocationA
UrlIsOpaqueW

kernel32

GetModuleHandleA
FreeLibrary
SetMailslotInfo
GetProcAddress
lstrlenA
GetModuleFileNameA
HeapLock
FindResourceA
FreeResource
CreateSemaphoreW
LoadResource
lstrcmpiW

msvcrt

atoi
_controlfp
__set_app_type
wcstok
__p__fmode
__p__commode
_amsg_exit
_initterm
_ismbblead
_XcptFilter
memset
_exit
_cexit
__setusermatherr
__getmainargs

Exports

Exports

?InitConfigDir@@YGHHPAUHINSTANCE__@@|U

Sections

.text
Size: 143KB - Virtual size: 142KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.$dsdir
Size: 512B - Virtual size: 89B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.icar
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.ecar
Size: 512B - Virtual size: 116B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ally
Size: 512B - Virtual size: 423B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.carry
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ram
Size: - Virtual size: 126KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a072a59e64ae5e597b120c735fab304f

Headers

File Characteristics

PDB Paths

Imports

user32

shlwapi

kernel32

msvcrt

Exports

Exports

Sections

.text Size: 143KB - Virtual size: 142KB

.$dsdir Size: 512B - Virtual size: 89B

.icar Size: 3KB - Virtual size: 2KB

.ecar Size: 512B - Virtual size: 116B

.ally Size: 512B - Virtual size: 423B

.carry Size: 1KB - Virtual size: 1KB

.data Size: 2KB - Virtual size: 1KB

.ram Size: - Virtual size: 126KB

.text
Size: 143KB - Virtual size: 142KB

.$dsdir
Size: 512B - Virtual size: 89B

.icar
Size: 3KB - Virtual size: 2KB

.ecar
Size: 512B - Virtual size: 116B

.ally
Size: 512B - Virtual size: 423B

.carry
Size: 1KB - Virtual size: 1KB

.data
Size: 2KB - Virtual size: 1KB

.ram
Size: - Virtual size: 126KB