10d00cf5cb9e52406b0bfff7cadbbfea_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

10d00cf5cb9e52406b0bfff7cadbbfea_JaffaCakes118
Size

71KB
MD5

10d00cf5cb9e52406b0bfff7cadbbfea
SHA1

6c465bbc90a016edd4deccb1bd2bd57821789c15
SHA256

3af79b25133198af87d958d768222917dda483da7e2eba9e8e3f376f39790f3c
SHA512

9ebb98438bb2d78bca3ffd1e6df0216a5118ff43fe2fb2e0232be595c168bbfee4b82cef5896045a13f877cdd54cafbb9126cfb96e9b5a9d1032ca285e3453a0
SSDEEP

1536:aLpvz2M/wfTKbMpr3gYHi32fuAbi9zN2fI0qzT:aLpvz7YfeoxwYHe2xxg3T

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
10d00cf5cb9e52406b0bfff7cadbbfea_JaffaCakes118

Files

10d00cf5cb9e52406b0bfff7cadbbfea_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f004971d75a9126865de757a8ebdfeb1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

ReleaseStgMedium
OleCreateStaticFromData
CoDisconnectObject

kernel32

VirtualAllocEx
GetACP
GetCommandLineA
GetFileType
GetFileSize
LoadLibraryA
GetFileAttributesA
ExitProcess

version

VerQueryValueA
GetFileVersionInfoSizeA

shlwapi

SHEnumValueA
SHDeleteKeyA
SHGetValueA

comdlg32

FindTextA
ChooseColorA

gdi32

RestoreDC
GetTextColor
GetBitmapBits
SetPixel

msvcrt

sprintf
wcscspn
atol
wcsncmp
swprintf

advapi32

GetLengthSid
RegQueryValueExA

shell32

Shell_NotifyIconW

user32

GetMenu
IsWindowUnicode
EnumWindows
OemToCharA
SetWindowLongW
GetCapture
IsDialogMessageA
LoadKeyboardLayoutA
ReleaseDC
GetForegroundWindow
EnableMenuItem
PeekMessageW
GetCursor
SendMessageA
WaitMessage
EnumChildWindows
PtInRect
ChildWindowFromPoint
RemovePropA
EndDialog
DrawTextA
GetActiveWindow
SetFocus
SetParent
UnregisterClassA
InsertMenuItemA
CharUpperA
GetSystemMetrics
ScreenToClient
DeleteMenu
GetWindowLongA
OpenClipboard
BeginPaint
SystemParametersInfoA
GetSubMenu
SetScrollInfo
TranslateMessage
InsertMenuA
DrawFrameControl
CreatePopupMenu
GetClientRect
SetWindowTextA
PostQuitMessage
DrawEdge
GetClipboardData
GetScrollRange
GetPropA
UpdateWindow
InflateRect
GetKeyboardType
GetMenuItemID
GetScrollPos
ClientToScreen
LoadIconA
CreateWindowExA
PeekMessageA
CharNextA
GetWindowPlacement
wsprintfA
UnhookWindowsHookEx
GetIconInfo
GetDlgItem
IsWindow
SetMenuItemInfoA
IsRectEmpty
GetWindowTextA
GetMenuItemCount
IntersectRect
ShowWindow
SetScrollRange
GetParent
MsgWaitForMultipleObjects
GetWindow
RegisterWindowMessageA
MapWindowPoints
GetWindowDC
ScrollWindow
GetSystemMenu
DefMDIChildProcA
DefWindowProcA
RedrawWindow
GetClassInfoA
SetClipboardData
GetScrollInfo
SetClassLongA
MapVirtualKeyA
SetWindowLongA
TranslateMDISysAccel
CharLowerA
GetClassLongA
CharLowerBuffA
IsWindowEnabled
GetClassNameA
GetTopWindow

Exports

Exports

_PgAqTWw

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data
.rdata
.rsrc/0/DIALOG/TEXTFILEDLG
.rsrc/0/MANIFEST/1
.xml
.rsrc/0/RCDATA/DVCLAL
.rsrc/0/STRING/4094
.rsrc/0/STRING/4095
.rsrc/1033/BITMAP/BBABORT.bmp
.rsrc/1033/version.txt
.text

Sharing

General

Malware Config

Signatures

Files

f004971d75a9126865de757a8ebdfeb1

Headers

File Characteristics

Imports

ole32

kernel32

version

shlwapi

comdlg32

gdi32

msvcrt

advapi32

shell32

user32

Exports

Exports

Sections

.text Size: 10KB - Virtual size: 9KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 52KB - Virtual size: 103KB

.rsrc Size: 5KB - Virtual size: 4KB

.text
Size: 10KB - Virtual size: 9KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 52KB - Virtual size: 103KB

.rsrc
Size: 5KB - Virtual size: 4KB