0ffc07ad9131825fc70d1e137c9caee3_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0ffc07ad9131825fc70d1e137c9caee3_JaffaCakes118
Size

3.1MB
MD5

0ffc07ad9131825fc70d1e137c9caee3
SHA1

3954bbb1c7d7af19291b68ff1c9f0103e49b4009
SHA256

a10edeaaed9e12f62a21c74be29075fc95dcaf3921dfd7147ecb409016e6d6a0
SHA512

b971c3ca12ccedaca9280b7594a74200f3c2430365c0198c18617e88e2b99246ccc2eb0c4c33672be660bb5c17d055ddf67d76192645b5e28ad390ccc941b907
SSDEEP

3072:wSni3uGJXqXB+9WQLj9l4IF0y8U7W9J5Iud1+3p9fG6cDWdBr9uJ8DT:ri333v9l4IF0A7W9J5Iud1+3p9fGOYy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0ffc07ad9131825fc70d1e137c9caee3_JaffaCakes118

Files

0ffc07ad9131825fc70d1e137c9caee3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

115a1884d82c0d7121d156b3db06ad35

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

crtdll

memset
memcpy
printf
strncmp
strcpy
strlen
strncpy
cos
sin
strcat
fopen
fseek
fclose
strcmp
memmove

user32

wsprintfA
SetWindowLongA
SetClassLongA
InvalidateRect
GetWindowLongA
SetLayeredWindowAttributes
ShowWindow
GetSystemMetrics
GetDC
ReleaseDC
EnumDisplaySettingsA
SendMessageA
GetAsyncKeyState
wvsprintfA
GetDesktopWindow
FillRect
LoadCursorA
LoadIconA
RegisterClassA
GetSysColor
GetWindow
SetActiveWindow
DestroyWindow
UnregisterClassA
DestroyAcceleratorTable
GetClientRect
GetMenu
AdjustWindowRect
GetActiveWindow
GetWindowRect
CreateWindowExA
SetWindowPos
PeekMessageA
TranslateAcceleratorA
TranslateMessage
DispatchMessageA
GetClassNameA
PostMessageA
GetParent
DefWindowProcA
EnableWindow
SetFocus
IsWindowEnabled
IsWindowVisible
GetFocus
IsChild
EnumChildWindows
GetKeyState
CreateAcceleratorTableA
SetCursorPos
LoadImageA
SetCursor
SystemParametersInfoA
SetCapture
GetCursorPos
MapWindowPoints
ReleaseCapture
MoveWindow
ShowCursor
OffsetRect
SetRect
CallWindowProcA
ClientToScreen
GetPropA
SetPropA
SetWindowTextA
BeginPaint
EndPaint
RegisterClassExA
DestroyIcon
CreateIconFromResourceEx
CreateIconFromResource
GetIconInfo
DrawIconEx

gdi32

StretchBlt
CreatePatternBrush
GetPixel
CreateCompatibleDC
SelectObject
BitBlt
DeleteDC
GetDeviceCaps
CreateCompatibleBitmap
GetStockObject
GetObjectA
GetDIBits
DeleteObject
CreateBrushIndirect
Rectangle
GetObjectType
CreateDCA
SetDIBits
SetStretchBltMode
SetBrushOrgEx
CreateSolidBrush
CreatePen
SetTextAlign
SetTextColor
SetPixelV
SelectPalette
RealizePalette
StretchDIBits
MoveToEx
LineTo
Ellipse
SetROP2
SetBkMode

winmm

waveOutOpen
waveOutPrepareHeader
waveOutWrite
waveOutReset
waveOutUnprepareHeader
waveOutClose
waveOutGetPosition

oleaut32

OleLoadPicture

ole32

CreateStreamOnHGlobal
CoInitialize
CoUninitialize

imagehlp

MakeSureDirectoryPathExists

kernel32

GetModuleHandleA
GetCommandLineA
ExitProcess
HeapCreate
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
GetModuleFileNameA
GetTempPathA
HeapDestroy
HeapAlloc
FindResourceA
SizeofResource
LoadResource
CreateFileA
ReadFile
SetFilePointer
CloseHandle
CreateThread
SetThreadPriority
WaitForSingleObject
Sleep
HeapReAlloc
FreeLibrary
GetProcAddress
LoadLibraryA
IsBadReadPtr
HeapFree
GetCurrentProcess
WriteProcessMemory
GlobalReAlloc
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
GetSystemInfo
GetFileSize
QueryPerformanceFrequency
QueryPerformanceCounter
GetTickCount
WriteFile
FindFirstFileA
SetFileAttributesA
DeleteFileA
FindNextFileA
FindClose
RemoveDirectoryA

shell32

ShellExecuteExA

Sections

.text
Size: 153KB - Virtual size: 152KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2.9MB - Virtual size: 3.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.flat
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

115a1884d82c0d7121d156b3db06ad35

Headers

File Characteristics

Imports

crtdll

user32

gdi32

winmm

oleaut32

ole32

imagehlp

kernel32

shell32

Sections

.text Size: 153KB - Virtual size: 152KB

.data Size: 2.9MB - Virtual size: 3.3MB

.flat Size: 1KB - Virtual size: 1KB

.text
Size: 153KB - Virtual size: 152KB

.data
Size: 2.9MB - Virtual size: 3.3MB

.flat
Size: 1KB - Virtual size: 1KB