0c682ff3e5b06ea55546a7ee8eac6c9c_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

0c682ff3e5b06ea55546a7ee8eac6c9c_JaffaCakes118
Size

19KB
MD5

0c682ff3e5b06ea55546a7ee8eac6c9c
SHA1

8e1cc848e294b319f47a2f38ed4aad154fea7b05
SHA256

67f7328ec683d0b316f4af2dd34c8411dbf7c1dfbb1dff7cb0b8f7812c36913d
SHA512

1050592e1802d866a4eedeefc2dddb4e0c2a5140e208b7faf38bc2bbee7f380aa4f03beff4ce6e944cfe26a67cfd786a113a7d8e7dfe9640b2d08cfa58aae750
SSDEEP

384:P0qYE38hIxuA+Qjsh8KRJqfhVpn4t3Bh:cKGIxR+lfzqpVp4t33

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0c682ff3e5b06ea55546a7ee8eac6c9c_JaffaCakes118

Files

0c682ff3e5b06ea55546a7ee8eac6c9c_JaffaCakes118
.exe windows:5 windows x86 arch:x86

2cfc4299f3992b4c4b8e3ee8bacfcfc3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BuildCommDCBAndTimeoutsW
ClearCommBreak
ClearCommError
CloseHandle
CompareStringA
CompareStringW
ContinueDebugEvent
CreateDirectoryExA
CreateHardLinkA
DeleteAtom
DeleteTimerQueue
DeleteVolumeMountPointW
EnumResourceLanguagesA
EnumSystemCodePagesA
ExitThread
FillConsoleOutputCharacterW
FindFirstFileExW
FindNextVolumeMountPointA
FlushInstructionCache
GetACP
GetAtomNameA
GetBinaryType
GetBinaryTypeA
GetCPInfo
GetCommTimeouts
GetComputerNameW
GetConsoleAliasesW
GetConsoleCP
GetCurrencyFormatW
GetCurrentThread
GetDiskFreeSpaceExW
GetEnvironmentStringsA
GetExitCodeProcess
GetLogicalDriveStringsW
GetModuleFileNameW
GetNamedPipeHandleStateA
GetPrivateProfileIntW
GetProcessShutdownParameters
GetStartupInfoA
GetStdHandle
GetSystemDefaultLCID
GetSystemInfo
GetSystemPowerStatus
GetThreadTimes
AreFileApisANSI
GetVolumeInformationW
GetVolumePathNameW
GlobalCompact
Heap32Next
HeapCompact
HeapUnlock
IsBadStringPtrW
IsDBCSLeadByteEx
IsSystemResumeAutomatic
LockFileEx
MapUserPhysicalPages
MoveFileW
OpenEventA
ReadConsoleA
ReadConsoleOutputA
ResumeThread
RtlFillMemory
SearchPathA
SetCommMask
SetCommState
SetComputerNameA
SetConsoleCursorInfo
SetConsoleOutputCP
SetDefaultCommConfigW
SetFileTime
SetHandleInformation
SetMailslotInfo
SetProcessPriorityBoost
SetTapePosition
SystemTimeToFileTime
TerminateThread
TlsGetValue
UnlockFileEx
VerLanguageNameA
VirtualAlloc
VirtualFree
VirtualQueryEx
WriteConsoleOutputCharacterW
WriteConsoleOutputW
WritePrivateProfileStructW
WriteProfileStringW
lstrcmpA
lstrcmpiW
lstrcpy
GetProcAddress
GetTimeFormatW
GetModuleHandleA

msvcrt

memset

user32

CloseClipboard
CloseWindowStation
CopyAcceleratorTableA
CreateIconFromResourceEx
CreateIconIndirect
CreateMDIWindowW
CreateWindowExA
DdeDisconnect
DdeDisconnectList
DdeQueryStringW
DefMDIChildProcA
DeferWindowPos
DestroyCaret
DestroyMenu
DestroyWindow
DialogBoxParamA
DlgDirListA
DlgDirSelectComboBoxExW
DragDetect
DrawFrame
DrawIcon
DrawIconEx
DrawMenuBar
DrawStateW
EnumDesktopsW
EnumDisplayMonitors
EnumWindowStationsW
EqualRect
ExitWindowsEx
GetCaretPos
GetClassInfoExA
GetClassLongW
GetClientRect
GetClipboardFormatNameA
GetClipboardViewer
GetDesktopWindow
GetKeyboardLayoutNameA
GetLastInputInfo
GetMenuDefaultItem
GetMenuItemInfoA
GetMenuStringW
GetProcessWindowStation
GetShellWindow
GetUserObjectInformationW
GrayStringA
HideCaret
IMPGetIMEW
IMPQueryIMEW
IMPSetIMEA
IMPSetIMEW
InSendMessage
IsCharAlphaNumericW
LoadCursorFromFileW
LoadImageA
LoadImageW
LoadMenuIndirectW
LoadMenuW
MapVirtualKeyExW
MessageBoxA
ModifyMenuW
MonitorFromWindow
OffsetRect
OpenClipboard
OpenIcon
PeekMessageA
PostMessageW
RealGetWindowClassW
RegisterClassW
RegisterDeviceNotificationA
ScreenToClient
SendDlgItemMessageA
SendIMEMessageExA
SendMessageW
SetCapture
SetDlgItemTextA
SetForegroundWindow
SetScrollRange
SetThreadDesktop
SetTimer
SetUserObjectInformationA
SetWindowLongA
SetWindowsHookExA
SubtractRect
SystemParametersInfoW
UnhookWindowsHook
UnloadKeyboardLayout
UnpackDDElParam
ValidateRgn
WinHelpA
WinHelpW
wsprintfW
CheckMenuItem

advapi32

RegOpenKeyExW
RegOpenKeyA

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text2
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 132B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2cfc4299f3992b4c4b8e3ee8bacfcfc3

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

advapi32

Sections

.text Size: 6KB - Virtual size: 6KB

.text2 Size: 9KB - Virtual size: 8KB

.data Size: 512B - Virtual size: 132B

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 6KB - Virtual size: 6KB

.text2
Size: 9KB - Virtual size: 8KB

.data
Size: 512B - Virtual size: 132B

.rsrc
Size: 2KB - Virtual size: 1KB