c0a8fd9f86b8d624c2da204032901470_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

c0a8fd9f86b8d624c2da204032901470_JaffaCakes118
Size

643KB
MD5

c0a8fd9f86b8d624c2da204032901470
SHA1

85d554691eb3dc82da85bd12adeac8187309bf42
SHA256

29489fcd57f01e72a2a62e67380f59fd380bd9789b7673515ea6117e9119a577
SHA512

d185abb5181d6114a3c6f296ff8e09178f7f5f68d5132b67860ad8a739f851cc16734e8e1ef3c3959f6e4338fbdbf8ff95013715e7294bd68ed8c8e4e8bd8bad
SSDEEP

12288:0cXXraJn2wGkg7MYlIDPvdbtD1OYtkzadWyEZRjZGop1Mjd/94QT:Ji2w/EvOH31Oakz3jxpijd/mW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c0a8fd9f86b8d624c2da204032901470_JaffaCakes118

Files

c0a8fd9f86b8d624c2da204032901470_JaffaCakes118
.exe windows:5 windows x86 arch:x86

b2c2d962265604c0a1f7ea70aee0061a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DdeGetLastError
ScreenToClient
GetMessagePos
CallWindowProcW
IsWindowVisible
LoadBitmapW
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
TrackPopupMenu
GetWindowRect
AppendMenuW
CreatePopupMenu
GetSystemMetrics
EndDialog
EnableMenuItem
GetSystemMenu
SetClassLongW
IsWindowEnabled
SetWindowPos
DialogBoxParamW
CheckDlgButton
CreateWindowExW
SystemParametersInfoW
RegisterClassW
SetDlgItemTextW
GetDlgItemTextW
MessageBoxIndirectW
CharNextA

kernel32

WideCharToMultiByte
HeapSize
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
RtlUnwind
HeapReAlloc
LoadLibraryA
IsDebuggerPresent
SetUnhandledExceptionFilter
TerminateProcess
GetOEMCP
GetCPInfo
GetCurrentProcessId
GetTickCount
CloseHandle
CreateDirectoryA
CreateFileA
CreateProcessA
DeleteFileA
FindResourceA
FormatMessageA
GetACP
GetCommandLineA
GetCurrentProcess
GetEnvironmentVariableA
GetExitCodeProcess
GetFileAttributesA
GetFileSize
GetFullPathNameA
GetLastError
GetLocaleInfoA
GetModuleFileNameA
GetModuleHandleA
SetFilePointer
SetLastError
SizeofResource
Sleep
VirtualAlloc
VirtualFree
VirtualProtect
VirtualQuery
WriteFile
MultiByteToWideChar
TlsGetValue
TlsSetValue
LocalAlloc
LocalFree
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
GetSystemTimeAsFileTime
HeapFree
GetVersionExA
HeapAlloc
GetProcessHeap
GetStartupInfoA
GetProcAddress
TlsAlloc
TlsFree
InterlockedIncrement
GetCurrentThreadId
InterlockedDecrement
ExitProcess
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapDestroy
HeapCreate
QueryPerformanceCounter

Sections

.text
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 601KB - Virtual size: 732KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b2c2d962265604c0a1f7ea70aee0061a

Headers

DLL Characteristics

File Characteristics

Imports

user32

kernel32

Sections

.text Size: 31KB - Virtual size: 31KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 601KB - Virtual size: 732KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 31KB - Virtual size: 31KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 601KB - Virtual size: 732KB

.rsrc
Size: 1KB - Virtual size: 1KB