f1e369fd57a29155a43a8e2ca5b616af_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

f1e369fd57a29155a43a8e2ca5b616af_JaffaCakes118
Size

79KB
MD5

f1e369fd57a29155a43a8e2ca5b616af
SHA1

c4bded7920f5f0d6e306daf12d83c431f6e6d0e1
SHA256

c291cba41eb789ea0a1bdc1290bcfd65a43823fa13128358c55be522ec3dbb72
SHA512

7859bc19f7d410980ae73bd8087c13c69e1447878353a73bf924011c9006b903e9eaf8119726c205ca90194c37367423d755d8dca1f56fda7ea86b6784816de2
SSDEEP

768:cE3fkClcNqWKihbhooe/AZFjFb2Q2HOoVdYfpciy4UIzQZgJ8je0fhzXUuKlWdTd:jvkClcN9tek7Xofydy46C4eqUHlaTDp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f1e369fd57a29155a43a8e2ca5b616af_JaffaCakes118

Files

f1e369fd57a29155a43a8e2ca5b616af_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9aede4d94fffd37a9a653d7ddeee3458

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetWindowTextLengthA
CopyImage
GetFocus
AppendMenuW
DrawTextW
AlignRects
GetDC
IsWindow
DialogBoxParamA
CreateIcon
CalcMenuBar
DialogBoxParamW
BlockInput
GetDlgItem
AppendMenuA
CopyIcon
CloseWindow
DrawTextA
InsertMenuA
IsMenu
CalcMenuBar
IsWindow
AppendMenuA
DialogBoxParamA
DrawTextA
GetWindowTextLengthA
CloseWindow
GetWindowTextA
CreateIcon
BlockInput
CopyRect
AlignRects
CopyIcon
DrawIcon
IsMenu
GetDC
GetCursor
GetDlgItem
AppendMenuW

comctl32

ImageList_DragShowNolock
InitCommonControls
ImageList_DragLeave
ImageList_GetIconSize
ImageList_Create
ImageList_GetImageCount
ImageList_GetDragImage
ImageList_Read
ImageList_DragMove
ImageList_GetImageRect
ImageList_BeginDrag
ImageList_Merge
ImageList_EndDrag
ImageList_Draw
ImageList_AddIcon
ImageList_GetIcon
ImageList_LoadImageA
ImageList_DrawIndirect
ImageList_GetImageInfo
ImageList_DragEnter

kernel32

lstrcmpA
CloseHandle
GetLastError
FreeLibrary
GetModuleHandleA
GetStringTypeW
lstrcatA
GetStdHandle
lstrcpynA
Sleep
GetFileSize
lstrcpyA
HeapFree
GetStringTypeA
HeapAlloc
GetLocalTime
GetDateFormatA
GetCPInfo
DeleteFileA

advapi32

RegDeleteValueW
RegQueryValueA
RegCreateKeyExA
RegReplaceKeyW
RegOpenKeyW
RegDeleteKeyW
RegEnumValueW
RegQueryValueExW
RegQueryInfoKeyW
RegFlushKey
RegQueryValueExA
RegGetKeySecurity
RegEnumKeyW
RegCreateKeyExW
RegDeleteValueA
RegEnumValueA
RegQueryInfoKeyA
RegOpenKeyExW
RegEnumKeyExA

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.kdata
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 6KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ygENfi
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9aede4d94fffd37a9a653d7ddeee3458

Headers

File Characteristics

Imports

user32

comctl32

kernel32

advapi32

Sections

.text Size: 14KB - Virtual size: 13KB

.kdata Size: 52KB - Virtual size: 51KB

.pdata Size: 6KB - Virtual size: 48KB

.ygENfi Size: 3KB - Virtual size: 2KB

.text
Size: 14KB - Virtual size: 13KB

.kdata
Size: 52KB - Virtual size: 51KB

.pdata
Size: 6KB - Virtual size: 48KB

.ygENfi
Size: 3KB - Virtual size: 2KB