0b437e8b5ff84aa34bacef5507adc86f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0b437e8b5ff84aa34bacef5507adc86f_JaffaCakes118
Size

135KB
MD5

0b437e8b5ff84aa34bacef5507adc86f
SHA1

0864609c317bcf70a12a0d7ec00f0f42657ab10b
SHA256

efa39b14879a74d4b49622052f9bf3e28389c4b25062e68a7374caab52a9f0d3
SHA512

763b942cb6fddba032239b8185a452bf4b2baffc0ebd589af072fd9530bb48778de5ff465f40aafe7bc4440f406177609c455415636489df680e2253759d319b
SSDEEP

3072:wza1mESMthGFDQCY+QU7ky/CEjpmvTg2Oz1hhhmSKlwp+dR7:w21dRGNoeCbUz1hhhKlG+dJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0b437e8b5ff84aa34bacef5507adc86f_JaffaCakes118

Files

0b437e8b5ff84aa34bacef5507adc86f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3a3dad06dbbb3f7bf0a453d8523d6d0b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_ismbbalpha
_setmbcp
_onexit
_yn
_tell
exp
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
__dllonexit

imagehlp

ImageGetDigestStream
MapFileAndCheckSumA
ImageGetCertificateData
ImageGetCertificateHeader
UpdateDebugInfoFileEx
ImageEnumerateCertificates

user32

GetClassInfoA
DestroyCursor
InsertMenuA
DestroyAcceleratorTable
ClipCursor
GetClassLongA
IsCharLowerA
CopyImage
CreateDialogIndirectParamA
WinHelpW
SendDlgItemMessageA
CloseWindow
SetRectEmpty
SetClassLongA
PostThreadMessageW
CreatePopupMenu
GetWindowWord
VkKeyScanExW
DispatchMessageA
RegisterHotKey
GetDlgItemInt
DdeConnect
MapVirtualKeyExW
GetCursor
GetDC
IsWindowVisible
GetClassInfoExW
ReuseDDElParam
MapWindowPoints
MoveWindow
MessageBeep
GetWindow
CheckMenuItem
SetWindowTextW
ChildWindowFromPointEx
IsIconic
OemToCharBuffA
BringWindowToTop
MapDialogRect
WinHelpA
FindWindowExW
GetProcessWindowStation
CharPrevW
SetActiveWindow
GetClipCursor
GetKeyboardState
GetClassNameA
DestroyCaret

kernel32

GetModuleHandleA
GetStartupInfoA

gdi32

RestoreDC
GetTextMetricsA
CreatePen
CreateSolidBrush
GetWinMetaFileBits
DeleteDC
LPtoDP
GetBkColor
GetGlyphOutlineW
PolyPolyline
SetPixelV
PlayEnhMetaFileRecord
Polyline
RectInRegion
EnumFontsW
SetStretchBltMode
GetDeviceCaps
DeleteObject
SetRectRgn
GetKerningPairsA
GetFontData
SetBitmapBits
CreateDIBSection
PtVisible
UpdateColors
SetPixel
GetWorldTransform
GetTextExtentPoint32A
SetPixelFormat
CloseEnhMetaFile
ResetDCW
GetPixel
Pie
DeleteEnhMetaFile
CreateDCA
CreateMetaFileA
GetObjectType
ExtCreatePen
Chord
SetGraphicsMode
SetDIBColorTable
GetBitmapBits
IntersectClipRect
SetTextColor
CreateDIBPatternBrushPt
SetWinMetaFileBits
SetROP2
SaveDC
SetTextCharacterExtra
CreateFontIndirectA
CreatePenIndirect
GetGlyphOutlineA
CreateRoundRectRgn
EndDoc
GetTextExtentPoint32W
PlayEnhMetaFile
AbortDoc
CreateFontW
CreateFontA
SetWorldTransform
GetCharABCWidthsW
GetTextMetricsW
CopyEnhMetaFileW
GetDIBColorTable
OffsetRgn
BeginPath
GetTextCharsetInfo
GetClipBox
SetViewportExtEx
SwapBuffers
GetNearestPaletteIndex
ExtFloodFill
GetEnhMetaFilePaletteEntries
ScaleWindowExtEx
SetColorAdjustment
SetWindowOrgEx
GetPolyFillMode
OffsetWindowOrgEx
EnumFontFamiliesExW
TextOutA
ExtTextOutA
EnumFontFamiliesA
GetSystemPaletteEntries
SetWindowExtEx
GetDIBits
StartPage
SetViewportOrgEx
FillPath
Rectangle
DeleteColorSpace
SetMetaFileBitsEx
SetDeviceGammaRamp
Ellipse
SetTextAlign
CopyEnhMetaFileA
GetTextAlign
CreateRectRgn
SelectPalette
GetObjectW
ResizePalette
StartDocW
GetBrushOrgEx
SetAbortProc
BitBlt
GetROP2
SetArcDirection
OffsetViewportOrgEx
GetTextFaceA
Polygon
GetMapMode
RectVisible
SetPolyFillMode
StretchBlt
GetStockObject
GetWindowOrgEx
MoveToEx
ExtSelectClipRgn
PolyBezier
EndPath
GetEnhMetaFileBits
CreateICW
SetMapMode
GetRgnBox
CreateCompatibleDC
ExtEscape
CreateEnhMetaFileA
PolyDraw
EqualRgn
PolyBezierTo
GetTextExtentPointA
CombineRgn
EnumFontsA
GetEnhMetaFileHeader
CreateICA
SelectClipRgn
FillRgn
StrokePath
ScaleViewportExtEx
DPtoLP
PatBlt
EnumMetaFile
SetBkMode
CreateEllipticRgn
RemoveFontResourceA
WidenPath
CreateDCW
OffsetClipRgn
GetObjectA
EndPage

mfc42

ord1089
ord1081
ord2396
ord3346
ord1042
ord5302
ord2725
ord2554
ord4698
ord5307
ord3922
ord5714
ord3953
ord2982
ord1100
ord3259
ord4465
ord1042
ord4486
ord6375
ord815
ord5731
ord1002
ord1070
ord1022
ord3262
ord2985
ord3081
ord2976
ord3401
ord3830
ord3831
ord3825
ord3079
ord4080
ord1096
ord4424
ord3738
ord561
ord1576
ord1168

Sections

.text
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 260KB - Virtual size: 257KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3a3dad06dbbb3f7bf0a453d8523d6d0b

Headers

File Characteristics

Imports

msvcrt

imagehlp

user32

kernel32

gdi32

mfc42

Sections

.text Size: 96KB - Virtual size: 95KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 4KB - Virtual size: 3.6MB

.rsrc Size: 260KB - Virtual size: 257KB

.text
Size: 96KB - Virtual size: 95KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 4KB - Virtual size: 3.6MB

.rsrc
Size: 260KB - Virtual size: 257KB