0a7a3864468881d76dd43a344b443fa7_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0a7a3864468881d76dd43a344b443fa7_JaffaCakes118
Size

368KB
MD5

0a7a3864468881d76dd43a344b443fa7
SHA1

2ba1d53e41005d76e560426003a688eac3b2e89e
SHA256

62379920a1fd85eb085700b2afb35b020c7ca183ca30baa0bf7937f7f17f58bd
SHA512

2765e572ba732ffffb31e58d00f7cfc285b242b75f6d55f9ed0252bcc0ee19620783fe12b1c87aae5c15ba147d7d923736f6947ac1173d9ca518b98ccda43ed9
SSDEEP

6144:zQ+VvFq7zb0IhfM4I6jOeO7ohZaNoMqcmKdJnwmd6CA7TuiKT878zKUO:zQ+VvFq7vhZI+hhMqcmK3bSK/O

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0a7a3864468881d76dd43a344b443fa7_JaffaCakes118

Files

0a7a3864468881d76dd43a344b443fa7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

860dd419b576af487ed9cb5827b9dd8c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHFileOperationA
DragQueryFileA
SHGetFolderPathA
SHGetFileInfoA
SHGetDesktopFolder

kernel32

GetACP
lstrlenA
DeleteFileA
GlobalAlloc
GetLastError
GetFileSize
GetCommandLineA
CreateEventA
IsBadReadPtr
GetProcAddress
FindResourceA
VirtualAlloc
GetCurrentThreadId
CloseHandle
LocalAlloc
VirtualAllocEx
FindFirstFileA
GetCPInfo
ExitThread
GetModuleHandleA
DeleteCriticalSection
EnumCalendarInfoA
GetDateFormatA
Sleep
CreateThread
GetCurrentProcessId
CreateFileA
GetEnvironmentStrings
GetDiskFreeSpaceA
GetFileType
ExitProcess
GetFullPathNameA
FreeLibrary
GetFileAttributesA
EnterCriticalSection
FreeResource
FindClose
CompareStringA
FormatMessageA
LoadLibraryA

comdlg32

GetSaveFileNameA

oleaut32

OleLoadPicture
SafeArrayCreate
VariantChangeType
SafeArrayGetElement
SysReAllocStringLen
VariantCopyInd

comctl32

ImageList_DragShowNolock

advapi32

RegCreateKeyExA

user32

CharNextA
CharLowerBuffA
BeginPaint
CallWindowProcA
DestroyWindow
CharUpperBuffA
DestroyCursor
DestroyIcon
AdjustWindowRectEx
CharNextW
DefFrameProcA
DefWindowProcA
ChildWindowFromPoint
DispatchMessageA
CharToOemA
DrawIcon
CreateMenu
CharLowerA
CallNextHookEx
ClientToScreen
DestroyMenu
DispatchMessageW
DrawFrameControl
DefMDIChildProcA
CreateIcon
CheckMenuItem
DeleteMenu
CloseClipboard
DrawEdge
CreatePopupMenu

msvcrt

memset
atan
tan
exit
log10
strlen
strcmp

shlwapi

SHDeleteKeyA
PathIsDirectoryA
SHSetValueA
SHStrDupA
SHEnumValueA
PathIsContentTypeA
PathFileExistsA
SHDeleteValueA
SHGetValueA
SHQueryValueExA

ole32

ReleaseStgMedium
MkParseDisplayName
CoFreeUnusedLibraries
StgCreateDocfileOnILockBytes
CoUnmarshalInterface
CoCreateInstanceEx
GetHGlobalFromStream
CreateOleAdviseHolder
OleRun
CreateBindCtx

gdi32

GetObjectA
LineTo
GetPaletteEntries
GetPixel
GetRgnBox
GetCurrentPositionEx

Sections

.text
Size: 75KB - Virtual size: 74KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1024B - Virtual size: 920B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc9
Size: 512B - Virtual size: 229B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc3
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc1
Size: 280KB - Virtual size: 280KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc8
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc5
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 976B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

860dd419b576af487ed9cb5827b9dd8c

Headers

File Characteristics

Imports

shell32

kernel32

comdlg32

oleaut32

comctl32

advapi32

user32

msvcrt

shlwapi

ole32

gdi32

Sections

.text Size: 75KB - Virtual size: 74KB

DATA Size: 1024B - Virtual size: 920B

.rsrc9 Size: 512B - Virtual size: 229B

.rsrc3 Size: 2KB - Virtual size: 1KB

.rsrc1 Size: 280KB - Virtual size: 280KB

.rsrc8 Size: 2KB - Virtual size: 1KB

.rsrc5 Size: 4KB - Virtual size: 4KB

.rsrc Size: 1024B - Virtual size: 976B

.text
Size: 75KB - Virtual size: 74KB

DATA
Size: 1024B - Virtual size: 920B

.rsrc9
Size: 512B - Virtual size: 229B

.rsrc3
Size: 2KB - Virtual size: 1KB

.rsrc1
Size: 280KB - Virtual size: 280KB

.rsrc8
Size: 2KB - Virtual size: 1KB

.rsrc5
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 1024B - Virtual size: 976B