0d70e0ab4954fb626f67146fe735d5e2_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0d70e0ab4954fb626f67146fe735d5e2_JaffaCakes118
Size

135KB
MD5

0d70e0ab4954fb626f67146fe735d5e2
SHA1

14aec90e72e1282b9670db9047135a072785540e
SHA256

ce88d8251cd154fb40ce7784c2a5537a19292c2d6c648324e2fe4551fef020d6
SHA512

272fbe154a229915e10e2b454ed2fc246c7eb239cf9becb6bae24947457644956864ff0851ebeb1c983b041bc5e6b7aa3d679c49849190bec1fab512d659c4e1
SSDEEP

3072:hEVStQgnN2g1w9k/g/kW7Wamf+a1q7JAP8S:VtQgfwRkW7W9hq7JAL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0d70e0ab4954fb626f67146fe735d5e2_JaffaCakes118

Files

0d70e0ab4954fb626f67146fe735d5e2_JaffaCakes118
.exe windows:4 windows x86 arch:x86

64d30ceaf4341462ae370bfc9e968073

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStringTypeW
HeapDestroy
LoadLibraryA
HeapFree
GetUserDefaultLCID
SizeofResource
CompareStringA
lstrlenW
GetLastError
LocalReAlloc
VirtualAllocEx
LoadResource
ExitProcess
HeapAlloc
GetModuleHandleA
GlobalDeleteAtom
GlobalAddAtomA
CreateFileA
GetStdHandle
LoadLibraryExA
lstrcatA
ExitThread
GetCurrentThread

msvcrt

wcschr
memset
memcpy
calloc
sprintf
wcstol
wcsncmp

user32

CheckMenuItem
DrawMenuBar
ClientToScreen
DestroyMenu
IsWindowVisible
RedrawWindow
SetScrollPos
InsertMenuItemA
DefFrameProcA
DrawTextA
PostMessageA
IsMenu
MessageBeep
CharLowerBuffA
LoadIconA
GetKeyboardLayoutList
wsprintfA
SetWindowPlacement
GetSystemMenu
GetTopWindow
BeginPaint
GetMenuState
DrawFrameControl
IsWindowUnicode
SetCursor
CallNextHookEx
ScreenToClient
OpenClipboard
OpenIcon
EnableMenuItem
GetKeyboardState
GetSysColor
IntersectRect
SetWindowPos
GetCursorPos
GetKeyNameTextA
IsChild
InvalidateRect
GetWindow
ShowScrollBar
SystemParametersInfoA
DispatchMessageA
DestroyIcon
GetActiveWindow
IsZoomed
KillTimer
PeekMessageW
MapWindowPoints
GetClassLongA
IsDlgButtonChecked
DrawEdge
PtInRect
GetMenu
GetClientRect
SetActiveWindow
LoadCursorA
GetClassNameA
CallWindowProcA
SetClipboardData
SetTimer
IsDialogMessageW
SetForegroundWindow

Exports

Exports

_dEMZ_jk
__4Fkb@8
c3CEQud@20
_PPOnuQN
__jhvKXZ@24
_8yltIGvIZgG4@24
_ORHmj
HPdhvsnuuP
_5mp4QT76dv6I@8
_2tI9mJKsVsV@8
_DVt6QqGVU@4

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 107KB - Virtual size: 222KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

64d30ceaf4341462ae370bfc9e968073

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

Exports

Exports

Sections

.text Size: 6KB - Virtual size: 6KB

.data Size: 12KB - Virtual size: 11KB

.bss Size: 107KB - Virtual size: 222KB

.idata Size: 4KB - Virtual size: 4KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 6KB - Virtual size: 6KB

.data
Size: 12KB - Virtual size: 11KB

.bss
Size: 107KB - Virtual size: 222KB

.idata
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 4KB - Virtual size: 3KB