0ee3cc35bc4bcac791b52c24ba1b081b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0ee3cc35bc4bcac791b52c24ba1b081b_JaffaCakes118
Size

108KB
MD5

0ee3cc35bc4bcac791b52c24ba1b081b
SHA1

1d4786b615ed317e6d31edaf2179d520dd126ba7
SHA256

aa4024e660edc842572a0e02bdc22e0b2590eb030e0e2c34f9a1032f86b1f757
SHA512

1af91b68108426f3720c2787cd26a50a4b6f23be2d8b0439230942856188a491df4f8b8b0ae6d061729b0a9d00b61cc21482ff139cd1567675d72a5fe839d463
SSDEEP

3072:hUUXvgxczoPzCfRWaOBLVfOLR0DfU1UoRz7:hUcgb0XOBLlOLH5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0ee3cc35bc4bcac791b52c24ba1b081b_JaffaCakes118

Files

0ee3cc35bc4bcac791b52c24ba1b081b_JaffaCakes118
.exe windows:1 windows x86 arch:x86

87c25ec52f308298402e5da68a64c3d3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcmpiA
TlsSetValue
SetUnhandledExceptionFilter
IsBadCodePtr
IsBadWritePtr
IsBadReadPtr
VirtualAlloc
VirtualFree
GetFileType
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
ExitProcess
TlsFree
GetCPInfo
GetOEMCP
GetACP
RaiseException
GetCommandLineA
GetEnvironmentStrings
GetStartupInfoA
RtlUnwind
GlobalAlloc
lstrcpyA
lstrcatA
GlobalLock
GlobalUnlock
GlobalGetAtomNameA
MultiByteToWideChar
WideCharToMultiByte
GetFullPathNameA
GetVolumeInformationA
WriteFile
LoadResource
LockResource
FreeResource
GlobalAddAtomA
DeleteCriticalSection
InitializeCriticalSection
GetProcAddress
GetModuleHandleA
WritePrivateProfileStringA
GetLastError
SetLastError
LocalFree
LocalAlloc
TlsGetValue
TlsAlloc
GetVersion
lstrcmpA
MulDiv
GetCurrentThreadId
GlobalDeleteAtom
FindResourceA
lstrlenA
CloseHandle
EnterCriticalSection
FreeLibrary
LeaveCriticalSection
GlobalFree
GetCurrentThread
SetErrorMode

user32

EndDeferWindowPos
CopyRect
BeginDeferWindowPos
GetClientRect
DeferWindowPos
EqualRect
AdjustWindowRectEx
SetActiveWindow
SetRect
SystemParametersInfoA
IsDialogMessageA
CharUpperA
OemToCharA
CharToOemA
LoadStringA
DestroyMenu
SetRectEmpty
LoadAcceleratorsA
TranslateAcceleratorA
IsWindow
LoadMenuA
LoadIconA
SetMenu
ReuseDDElParam
UnpackDDElParam
InvalidateRect
IsIconic
BringWindowToTop
FillRect
InflateRect
KillTimer
PtInRect
SetTimer
OffsetRect
GetDCEx
LockWindowUpdate
IntersectRect
RegisterWindowMessageA
SetParent
InvertRect
IsChild
GetDlgCtrlID
WinHelpA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
DefWindowProcA
DestroyWindow
CreateWindowExA
RemovePropA
GetTopWindow
GetMessageTime
GetMessagePos
GetForegroundWindow
SetForegroundWindow
GetWindow
GetWindowRect
SetWindowLongA
GetSysColor
GetSystemMetrics
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
wsprintfA
GetWindowTextA
SetWindowTextA
GetClassNameA
GetWindowLongA
ScreenToClient
ClientToScreen
GetCapture
WindowFromPoint
GetDesktopWindow
ReleaseCapture
SetCapture
LoadCursorA
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetParent
GetNextDlgTabItem
SetFocus
GetMessageA
TranslateMessage
DispatchMessageA
GetKeyState
CallNextHookEx
ValidateRect
PeekMessageA
GetCursorPos
UnhookWindowsHookEx
SetWindowsHookExA
MessageBoxA
EnableWindow
IsWindowEnabled
GetLastActivePopup
SetCursor
ShowOwnedPopups
SetWindowPos
IsWindowVisible
GetDlgItem
GetPropA
SetPropA
CallWindowProcA
ShowWindow
UpdateWindow
SendMessageA
PostQuitMessage
PostMessageA
GetWindowTextLengthA
GetClassInfoA
SetMessageQueue

gdi32

CreateBitmap
DeleteObject
SaveDC
RestoreDC
SelectObject
DeleteDC
GetStockObject
SetBkColor
SetBkMode
SetTextColor
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
GetClipBox
SelectClipRgn
SetTextAlign
CreateRectRgn
GetDeviceCaps
CreatePen
CreateSolidBrush
CreatePatternBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetTextExtentPointA
GetObjectA
CreateFontIndirectA
PatBlt
CombineRgn
SetRectRgn
CreateRectRgnIndirect
GetTextMetricsA
BitBlt
CreateCompatibleDC

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

RegOpenKeyExA
RegDeleteKeyA
RegCloseKey
RegSetValueExA
RegCreateKeyExA

shell32

ShellExecuteA
DragFinish
DragQueryFileA

Sections

.text
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 5KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

87c25ec52f308298402e5da68a64c3d3

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

Sections

.text Size: 72KB - Virtual size: 72KB

.bss Size: - Virtual size: 5KB

.rdata Size: 10KB - Virtual size: 10KB

.data Size: 8KB - Virtual size: 7KB

.idata Size: 6KB - Virtual size: 5KB

.reloc Size: 10KB - Virtual size: 10KB

.text
Size: 72KB - Virtual size: 72KB

.bss
Size: - Virtual size: 5KB

.rdata
Size: 10KB - Virtual size: 10KB

.data
Size: 8KB - Virtual size: 7KB

.idata
Size: 6KB - Virtual size: 5KB

.reloc
Size: 10KB - Virtual size: 10KB