0ac8dbaedb8098fe794d393a387f19ce_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0ac8dbaedb8098fe794d393a387f19ce_JaffaCakes118
Size

244KB
MD5

0ac8dbaedb8098fe794d393a387f19ce
SHA1

0ef1df3d080ba86fc5412b1e3ec6437cdb9ae18c
SHA256

680b6ce9738157c615122f95dfe33c96397a801140a8abd3180e4cbf24207173
SHA512

51b2ce875beff7a90f324655a8bc6ab5a4945aa610d890bff5ee5a5c23547a53993bcdd1958d12aadd72759c7b5a525217fc3f8b3c59e5e60561af1f0771ec38
SSDEEP

3072:28c0t3szGoM+bZiPK2VzrU60Xx2qIywIRGoM2uDI8WgfKGUrU4e1j59rQ4I29bXW:HkqmYVuNIZ0rm+5rUFdxQ4Im+dN0ev

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0ac8dbaedb8098fe794d393a387f19ce_JaffaCakes118

Files

0ac8dbaedb8098fe794d393a387f19ce_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0a5d159d58ff1f132327f95b616e797a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalFindAtomA
CreateDirectoryW
LoadLibraryExA
SetLocaleInfoA
GetProcAddress
CreateMailslotA
CreateMutexA
CreatePipe
CreateSemaphoreA
SystemTimeToFileTime
WaitForSingleObject
CreateSemaphoreW
GlobalDeleteAtom
GetAtomNameW
lstrcmpA
GetThreadPriority
GetHandleInformation
CreateDirectoryA
CompareFileTime
GlobalGetAtomNameA
IsValidLocale
GetDiskFreeSpaceW
GetCurrentProcessId
GetCurrentDirectoryA
lstrcat

user32

GetDlgItemTextW
SetWindowPos
SendDlgItemMessageW
PostQuitMessage
GetSysColor
SetActiveWindow
GetMenuItemInfoA
CharLowerW
InsertMenuItemW
IsMenu
LoadIconA
LoadCursorA
IsWindow
SetWindowLongW
CreateDesktopA
EndMenu
SetCursorPos
CheckMenuItem
GetDlgItemTextA
DefWindowProcA
GetForegroundWindow
CreateDesktopW
keybd_event
TrackPopupMenu
ShowWindow
CreateDialogIndirectParamW
CreateWindowExA
DialogBoxIndirectParamW
MessageBeep
GetMenu
AppendMenuA
DestroyMenu
ShowCaret
SetMenu
GetMessageW
SetForegroundWindow
IsIconic
EnableMenuItem
TrackPopupMenuEx
SetCapture
GetSysColorBrush
wvsprintfA
IsDlgButtonChecked
GetKeyState
EnableWindow
GetMessageA
CharNextW
GetClassInfoA
SetCursor
SendMessageW
CreateDialogParamW
MessageBoxIndirectA
SetDlgItemTextA
OpenClipboard
GetSubMenu
GetMenuItemCount
GetClassInfoW
GetAsyncKeyState
GetMenuItemID
SetDlgItemTextW
LoadMenuA
InvalidateRect
RemoveMenu
GetMenuState
GetCapture
GetMenuItemInfoW
GetCaretPos
MonitorFromWindow
RegisterClassExA
MessageBoxA
UnregisterClassA
DialogBoxParamW
ActivateKeyboardLayout
GetKeyboardType
CharNextA
IsChild
GetMenuStringA
LoadBitmapW
GetClassInfoExW
LoadMenuIndirectW
CharPrevA
GetActiveWindow
CreateAcceleratorTableW
DestroyCursor
GetActiveWindow
GetDesktopWindow
CreatePopupMenu

gdi32

CreateSolidBrush
RemoveFontResourceExA
GetEnhMetaFilePixelFormat
UpdateICMRegKeyA
SetMetaFileBitsEx
CreateRectRgn
GetTextExtentPointW
CreateMetaFileW
CreateScalableFontResourceW
GetRasterizerCaps
CreateDIBPatternBrush
CreateDIBSection
GetMetaFileW
CreateColorSpaceA
CreatePolyPolygonRgn
DeleteObject
CreateRoundRectRgn
CreateBrushIndirect
CreateFontIndirectW
RemoveFontResourceW
CreateEllipticRgn
CreateICA
CreateICW
GetStockObject

shell32

DuplicateIcon
FreeIconList
StrRStrW
SHBrowseForFolderA
StrChrA
Shell_NotifyIconW
StrChrIA
Shell_NotifyIconA
StrRStrA
StrCmpNIW
ExtractIconA
SHGetDiskFreeSpaceExA
StrNCmpA

ws2_32

WSASend
WSARecv
recvfrom
gethostbyname
getpeername
listen
WSADuplicateSocketW
WSAEventSelect
recv
WSAEnumNetworkEvents
bind
WSAAccept
accept
getservbyport
getprotobynumber

Sections

.nctul
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.W
Size: 92KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.yfOqyP
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.kG
Size: 4KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.yKpZh
Size: 90KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.hpE
Size: 15KB - Virtual size: 284KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vo
Size: 6KB - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0a5d159d58ff1f132327f95b616e797a

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

ws2_32

Sections

.nctul Size: 4KB - Virtual size: 4KB

.W Size: 92KB - Virtual size: 92KB

.yfOqyP Size: 13KB - Virtual size: 13KB

.kG Size: 4KB - Virtual size: 17KB

.yKpZh Size: 90KB - Virtual size: 90KB

.hpE Size: 15KB - Virtual size: 284KB

.vo Size: 6KB - Virtual size: 136KB

.rsrc Size: 7KB - Virtual size: 6KB

.reloc Size: 1024B - Virtual size: 1024B

.nctul
Size: 4KB - Virtual size: 4KB

.W
Size: 92KB - Virtual size: 92KB

.yfOqyP
Size: 13KB - Virtual size: 13KB

.kG
Size: 4KB - Virtual size: 17KB

.yKpZh
Size: 90KB - Virtual size: 90KB

.hpE
Size: 15KB - Virtual size: 284KB

.vo
Size: 6KB - Virtual size: 136KB

.rsrc
Size: 7KB - Virtual size: 6KB

.reloc
Size: 1024B - Virtual size: 1024B