0c236a1e340cee3da62f17907bb36843_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

0c236a1e340cee3da62f17907bb36843_JaffaCakes118
Size

108KB
MD5

0c236a1e340cee3da62f17907bb36843
SHA1

db25eeaa3df0ba662e89199374542a2b2cead2a2
SHA256

ce8b05f7e5605d6f18aa51d673e4e51c3754d5497c6f43f3596f97b6a0c3be76
SHA512

4a8d8521bee61858911b066cebd202149230d265b3c1b364ab270cf51e424ce38555d5c77510ccd9ebcae8b679ec9a7921bdd595bb72121a5acbdaed01151d5a
SSDEEP

1536:W0vfyXrFIZ7Jiul4OvzxEfI2agmmQ7pU2s5sVdzmh:W0XyMJ3txEQbgcsCD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0c236a1e340cee3da62f17907bb36843_JaffaCakes118

Files

0c236a1e340cee3da62f17907bb36843_JaffaCakes118
.exe windows:4 windows x86 arch:x86

431b1ad4e2b7ba00e405b70f47d8f68c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegLoadKeyA
RegEnumKeyA

comctl32

ImageList_Destroy
ImageList_GetBkColor
ImageList_Read
ImageList_DrawEx
ImageList_DragShowNolock
ImageList_Write
ImageList_Create
ImageList_Draw
ImageList_Remove
ImageList_Add

version

GetFileVersionInfoSizeA
GetFileVersionInfoA

msvcrt

memcpy
memmove
strncmp
pow

shlwapi

SHQueryInfoKeyA

gdi32

GetDIBits
SetBkMode
SetTextColor
CreatePalette
CreateDIBSection
GetPaletteEntries
CreatePenIndirect
CreateCompatibleDC
CreateCompatibleBitmap

user32

DefMDIChildProcA
EqualRect
CreateMenu
SetTimer
GetSysColor
GetMessagePos
GetSubMenu
GetCursor
BeginDeferWindowPos
ShowWindow
FrameRect
SystemParametersInfoA
GetDlgItem
GetKeyNameTextA
IsDialogMessageA
GetCapture
ClientToScreen
CheckMenuItem
CharToOemA
GetMenuItemInfoA
GetParent
DefWindowProcA
GetScrollPos
MessageBoxA
EndPaint
GetClassLongA
CharLowerA
HideCaret
GetForegroundWindow
GetClientRect
CharLowerBuffA
CreatePopupMenu
GetDC
GetScrollInfo
DispatchMessageW
GetCursorPos
GetWindow
GetClassInfoA
GetIconInfo
GetClipboardData
GetMenuItemID
GetPropA
EnumWindows
IsMenu
FillRect
ShowScrollBar
EnableMenuItem
CreateWindowExA
FindWindowA
RegisterClassA
CreateIcon
EnumChildWindows
EndDeferWindowPos
IsWindowEnabled
TrackPopupMenu
GetFocus
DrawMenuBar
EnableScrollBar
SetWindowPos
DrawTextA
GetMenuState
SetWindowTextA
DefFrameProcA
GetSysColorBrush
DeferWindowPos
CharNextA
GetKeyState
SetCursor
DrawIconEx

oleaut32

SysFreeString
VariantChangeType
SafeArrayGetElement
GetErrorInfo
SafeArrayUnaccessData

shell32

DragQueryFileA
SHGetDesktopFolder
SHGetFolderPathA
SHGetSpecialFolderLocation

comdlg32

FindTextA
GetFileTitleA
GetSaveFileNameA

kernel32

Sleep
GetModuleHandleA
LoadLibraryExA
ExitThread
LoadLibraryA
ExitProcess
LocalAlloc
VirtualAlloc

Sections

.text
Size: 51KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.init
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

431b1ad4e2b7ba00e405b70f47d8f68c

Headers

File Characteristics

Imports

advapi32

comctl32

version

msvcrt

shlwapi

gdi32

user32

oleaut32

shell32

comdlg32

kernel32

Sections

.text Size: 51KB - Virtual size: 50KB

.init Size: 4KB - Virtual size: 3KB

.edata Size: 49KB - Virtual size: 49KB

.data Size: 1KB - Virtual size: 1KB

.idata Size: 1KB - Virtual size: 1KB

.text
Size: 51KB - Virtual size: 50KB

.init
Size: 4KB - Virtual size: 3KB

.edata
Size: 49KB - Virtual size: 49KB

.data
Size: 1KB - Virtual size: 1KB

.idata
Size: 1KB - Virtual size: 1KB