ec7386c959c0b9c1b249c2b0f09be259_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

ec7386c959c0b9c1b249c2b0f09be259_JaffaCakes118
Size

28KB
MD5

ec7386c959c0b9c1b249c2b0f09be259
SHA1

52da3a593fc23d1b33df969485f87aa4a90ada83
SHA256

54b87516ec897df1c5c83504e6df3d1770720f0cdf5fe28a1660c247d91ec9df
SHA512

b6ec52d011c686052d620d358995e5731edba82af8ebf3c9616e33954d25590aa068879069a88e18942036c4125fd39ab60188705a5799a4270e843e7501c6a1
SSDEEP

768:sKu43BRxFjIoW9wcvIruSCLsiA8X1WoN3orGY:Vu4RPpe2cvIruSWsiAS1jYZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ec7386c959c0b9c1b249c2b0f09be259_JaffaCakes118

Files

ec7386c959c0b9c1b249c2b0f09be259_JaffaCakes118
.exe windows:4 windows x86 arch:x86

395fa8a42c0cc12318dbe1f541578aed

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetCurrentPositionEx
AbortPath
GetBrushOrgEx
ExtTextOutA
CloseFigure
AddFontResourceW
AddFontResourceExA
GetPixel
DeleteObject
AddFontResourceTracking
BeginPath
CreateSolidBrush
GetClipBox
GetBitmapBits
AddFontResourceExW
ClearBrushAttributes
GetPixel
GetPixel
CopyMetaFileA
ClearBitmapAttributes
BeginPath
AddFontResourceExW
DeleteDC
AbortPath
AddFontResourceW
ExcludeClipRect
CancelDC
CloseMetaFile
AddFontResourceA
GetDCOrgEx
AddFontResourceExA
AddFontMemResourceEx
GetClipBox
GetBitmapBits
ClearBitmapAttributes
AddFontMemResourceEx
AbortPath
RestoreDC
CreateSolidBrush
AddFontResourceW
ClearBrushAttributes
CopyMetaFileA
ExcludeClipRect
CloseMetaFile
AddFontResourceA
DeleteDC
GetClipBox
AddFontResourceExA
BitBlt
BeginPath
AddFontResourceTracking
GetCurrentPositionEx
CancelDC
AddFontResourceExW
GetPixel
GetBrushOrgEx
GetPixel
DeleteObject

kernel32

FindFirstFileA
DeleteFileW
ExitThread
ReadConsoleA
OpenFileMappingA
CopyFileExW
GetStdHandle
CopyFileExA
CreateDirectoryA
SetLastError
GetFileTime
GetLastError
FindAtomA
CreateThread
DeleteAtom
ReadFile
GetConsoleMode
GetFileSize
GetCPInfo
Sleep
CopyFileA
GlobalFree
CreateProcessA
GetComputerNameA

user32

CopyIcon
DialogBoxParamA
IsMenu
IsWindow
EndDialog
AppendMenuW
DialogBoxParamW
GetDC
GetCursor
CreateIcon
AppendMenuA
DrawTextA
AlignRects
LoadCursorA
DrawTextW
GetWindowTextA
GetMenu
LoadMenuA
GetDlgItem
GetWindowTextLengthA
CalcMenuBar
BlockInput
InsertMenuA
DrawIconEx
LoadCursorA
GetMenu
AlignRects
DrawIcon
GetCursor
IsWindow
CopyIcon
GetFocus
DrawTextA
GetDC
IsMenu
CopyRect
GetWindowTextLengthA
BlockInput
GetWindowTextA
CreateIcon
CalcMenuBar
DrawTextW
GetDlgItem
GetDlgItem
IsWindow
GetFocus
DrawTextW
CreateIcon
DialogBoxParamW
EndDialog
BlockInput
AlignRects
InsertMenuA
CopyIcon
CloseWindow
LoadCursorA
DialogBoxParamA
GetDC
GetCursor
CopyImage
GetWindowTextA
CalcMenuBar

advapi32

RegQueryInfoKeyW
RegQueryValueExA
RegOpenKeyA
RegEnumKeyExA
RegReplaceKeyA
RegEnumKeyW
RegEnumKeyA
RegDeleteValueA
RegEnumKeyExW
RegQueryValueExW
RegQueryValueW
RegOpenKeyW
RegLoadKeyA
RegCreateKeyW
RegReplaceKeyW
RegEnumValueW
RegDeleteKeyA

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

395fa8a42c0cc12318dbe1f541578aed

Headers

File Characteristics

Imports

gdi32

kernel32

user32

advapi32

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 19KB - Virtual size: 48KB

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 19KB - Virtual size: 48KB