0dd18e04b35f6cf96433aea2ef4cd89a_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0dd18e04b35f6cf96433aea2ef4cd89a_JaffaCakes118
Size

126KB
MD5

0dd18e04b35f6cf96433aea2ef4cd89a
SHA1

26cf40b36f15ade62d68f5bafb2b2dbdeef755b7
SHA256

d83470aa9da1de281a1e19b8c8357e64ed23d8b3470c5ef394b2e72e54119f92
SHA512

13470e5d7150699a31b88f22f5f18fafa1d8516645e71b091e9b36091eb82835c2e13306f0f8f7a8d35a5a874cfff02129f3be8c004cd2f5ea417cf12042c9de
SSDEEP

1536:CZI5BA+gTq1+DnrjniwsPkgq/Lyw4s3bd5z3xzaI+RsIL6CgGHJ4SISF4vgbyn:kuOhqGir12bXjhaI+9tgS6Suoen

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0dd18e04b35f6cf96433aea2ef4cd89a_JaffaCakes118

Files

0dd18e04b35f6cf96433aea2ef4cd89a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

77b497571fe3c9d4a6b6459b402346dd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalDeleteAtom
IsBadHugeReadPtr
GetDiskFreeSpaceA
ExitProcess
SetHandleCount
MoveFileExA
LoadLibraryA
IsBadReadPtr
FindResourceA
LocalAlloc
LoadResource
CloseHandle
GetACP
LocalFree
GetCurrentProcessId
InitializeCriticalSection
MulDiv
lstrcatA
EnterCriticalSection
VirtualAlloc
GetProcessHeap
GetFileType
GetStartupInfoA

user32

KillTimer
GetSubMenu
GetWindowLongA
CloseClipboard
DestroyIcon
EndPaint
PeekMessageA
SetCapture
CharLowerA
SetWindowLongA
SystemParametersInfoA
GetScrollPos
GetWindowPlacement
GetMenuState
SetWindowTextA
GetScrollRange
SetPropA
GetWindowThreadProcessId
GetKeyboardLayoutList
TranslateMDISysAccel
FrameRect
GetClassNameA
CharNextA
DefFrameProcA
RegisterClassA
TrackPopupMenu
LoadBitmapA
MessageBeep
CallNextHookEx
DestroyMenu
FindWindowA
GetIconInfo
ShowOwnedPopups
UnregisterClassA
IsWindowVisible
LoadIconA
AdjustWindowRectEx
RegisterClipboardFormatA
SetScrollPos
GetDCEx
DestroyCursor
GetClassInfoA
GetMessagePos
CallWindowProcA
EnableMenuItem
SetParent
CharNextW
PostQuitMessage
DrawMenuBar
IsWindowEnabled
CreatePopupMenu
GetForegroundWindow
SetFocus
EndDialog
GetMenuItemCount
DrawTextA
LoadCursorA
GetWindowTextLengthA
GetMenu
DrawIcon
CharLowerBuffA
GetSystemMenu

comctl32

ImageList_Destroy
ImageList_GetBkColor
ImageList_Add
ImageList_Create
ImageList_Remove
ImageList_Write
ImageList_Draw
ImageList_Read
ImageList_DragShowNolock

Exports

Exports

_x9EhulRACi73
KBoNhUTB6rjKS@8
sw1_rjIJSF02
UmjyCX@20
VaesnJvFGKMB@4
_hKwByTzeeRI@8
99_xGh5ul
_fa9POTb@12
4Fgzbx0vfG@16
_2vk9Tbwx
_wBGDCWfkB@4
N0kaB9nbin9KYO

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 99KB - Virtual size: 202KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

77b497571fe3c9d4a6b6459b402346dd

Headers

File Characteristics

Imports

kernel32

user32

comctl32

Exports

Exports

Sections

.text Size: 7KB - Virtual size: 6KB

.data Size: 10KB - Virtual size: 10KB

.bss Size: 99KB - Virtual size: 202KB

.idata Size: 4KB - Virtual size: 4KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 7KB - Virtual size: 6KB

.data
Size: 10KB - Virtual size: 10KB

.bss
Size: 99KB - Virtual size: 202KB

.idata
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 4KB - Virtual size: 3KB