f12700892b319b3ad559b63fcb398610_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f12700892b319b3ad559b63fcb398610_JaffaCakes118
Size

84KB
MD5

f12700892b319b3ad559b63fcb398610
SHA1

f0a63ed5ebb8f84fa06f9b01e2ba3ac0a60b91dc
SHA256

ce52557080f1e438b5b364afae7462a73fadeabd4751b36addb7bd564fc8170d
SHA512

25feaad801c3bd55cc43e08381bc7f9c78254fec4992922bfbc68901aaf25f58905e047c3e43801d72ecb4d0397664b94d1b0dee7065955587237287fc29c490
SSDEEP

1536:DLXeVReQoNHv/Le3O/zewRKiFVBT0I9dlCOFEsdD29Sb2i6GE:DoXa3qcewRKEz0IpCgdgniNE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f12700892b319b3ad559b63fcb398610_JaffaCakes118

Files

f12700892b319b3ad559b63fcb398610_JaffaCakes118
.exe windows:4 windows x86 arch:x86

004b95a404c6831d6f66d8e482b59e2a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DialogBoxParamA
LoadMenuA
EndDialog
IsWindow
CreateIcon
DrawIcon
CopyIcon
GetFocus
DrawIconEx
BlockInput
CalcMenuBar
CopyRect
DrawTextW
IsMenu
CloseWindow
InsertMenuA

comctl32

ImageList_Copy
ImageList_DragLeave
ImageList_ReplaceIcon
ImageList_LoadImage
ImageList_GetIconSize
ImageList_GetImageInfo
ImageList_EndDrag
ImageList_LoadImageA
ImageList_AddMasked
ImageList_DrawEx
ImageList_LoadImageW
ImageList_Read
ImageList_GetDragImage
ImageList_Create
InitCommonControls
ImageList_Destroy
ImageList_GetIcon

advapi32

RegOpenKeyExW
RegEnumKeyW
RegLoadKeyA
RegCreateKeyExW
RegDeleteValueW
RegDeleteKeyA
RegGetKeySecurity
RegQueryInfoKeyW
RegDeleteValueA
RegEnumKeyA
RegQueryInfoKeyA
RegQueryValueW
RegEnumKeyExW
RegQueryValueExW
RegEnumValueA
RegQueryValueExA
RegEnumKeyExA
RegCreateKeyW
RegDeleteKeyW

kernel32

ReadFile
OpenFile
CopyFileExA
SetLastError
GetLastError
GetFileSize
CreateProcessA
GlobalFree
OpenFileMappingA
GetConsoleMode
CopyFileW
CreateDirectoryA
CopyFileExW
GetCommandLineA
GetCPInfo
DeleteAtom
FindAtomA

gdi32

RestoreDC
GetBitmapBits
CreateSolidBrush
GetPixel
GetDCOrgEx
AddFontResourceA
AbortPath
AddFontResourceTracking
GetBrushOrgEx
AddFontResourceExW
CloseFigure
BeginPath
AddFontResourceExA
AddFontResourceW
GetPixel
ClearBrushAttributes
CancelDC

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 64KB - Virtual size: 174KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

004b95a404c6831d6f66d8e482b59e2a

Headers

File Characteristics

Imports

user32

comctl32

advapi32

kernel32

gdi32

Sections

.text Size: 8KB - Virtual size: 4KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 64KB - Virtual size: 174KB

.rsrc Size: 4KB - Virtual size: 2KB

.text
Size: 8KB - Virtual size: 4KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 64KB - Virtual size: 174KB

.rsrc
Size: 4KB - Virtual size: 2KB