fa8d2b5028557d89c714b0e771671fa2_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

fa8d2b5028557d89c714b0e771671fa2_JaffaCakes118
Size

106KB
MD5

fa8d2b5028557d89c714b0e771671fa2
SHA1

d3b8795d8ef8c81333212f792acdc43bd682aa5f
SHA256

77e534dfb332c6bb28c43d8fbdd9fa6b6d51a1cd6c32c415177b5880883c9180
SHA512

d949adc555e88414a44d3eeb66bf7700f935fa8adfd42b121750b0c84c4ea26e2c450d2cd54947eadd927d7f23866a65e3e9c7a61ee8b8c5c5b20aef43886f1e
SSDEEP

1536:twOI9uWkflxBWg8F/D5EJeLyGlwEWb7h8sIuCQ3wea0IE36O6GUyHgz:bwuW4lr78L5EJeLyYw3brzI0F6ZyHm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fa8d2b5028557d89c714b0e771671fa2_JaffaCakes118

Files

fa8d2b5028557d89c714b0e771671fa2_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7ad054e910578ebea65f03145c017841

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadMenuA
DialogBoxParamW
DrawTextW
GetCursor
AppendMenuA
GetDC
DialogBoxParamA
AlignRects
CopyRect
CopyImage
BlockInput
GetMenu
GetFocus
GetWindowTextLengthA
IsWindow
GetFocus
CopyRect
DrawTextA
DrawIcon
DialogBoxParamW
AppendMenuW
GetWindowTextLengthA
CloseWindow
DrawTextW
LoadCursorA
GetDlgItem
IsMenu
CopyIcon
InsertMenuA
AppendMenuW
DrawTextW
EndDialog
CalcMenuBar
GetDlgItem
LoadCursorA
GetCursor
InsertMenuA
BlockInput
IsWindow
AppendMenuA
GetWindowTextLengthA
DrawIcon
InsertMenuA
EndDialog
AlignRects
GetDlgItem
AppendMenuW
IsWindow
AppendMenuA
DrawIcon
GetFocus
BlockInput
DialogBoxParamA
GetWindowTextA
DrawTextW
GetDC
GetCursor
CloseWindow
DrawIconEx
AppendMenuA
LoadCursorA
CreateIcon
AppendMenuW
DrawIconEx
DialogBoxParamA
InsertMenuA
GetFocus
CopyRect
CloseWindow
GetCursor
GetDlgItem
DialogBoxParamW
CopyImage
CopyIcon
EndDialog
BlockInput
GetWindowTextA

advapi32

RegQueryValueW
RegQueryValueA
RegCreateKeyExA
RegQueryValueExA
RegOpenKeyExA
RegQueryValueExW
RegLoadKeyW
RegDeleteKeyA
RegQueryInfoKeyA
RegOpenKeyW
RegEnumKeyW
RegEnumValueA
RegOpenKeyExW
RegCreateKeyW
RegOpenKeyA
RegFlushKey
RegEnumKeyA
RegDeleteValueA
RegEnumKeyW
RegQueryInfoKeyA
RegCreateKeyExW
RegEnumKeyExW
RegFlushKey
RegLoadKeyW
RegOpenKeyA
RegDeleteValueW
RegOpenKeyExW
RegOpenKeyExA
RegEnumKeyA
RegReplaceKeyW
RegCreateKeyExA
RegQueryValueW
RegReplaceKeyA
RegDeleteKeyA
RegQueryValueA

kernel32

FreeConsole
FindAtomA
GetVersion
FindFirstFileA
GetACP
ExitThread
CreateThread
GetStdHandle
GlobalFree
DeleteFileA
GetFileTime
GetConsoleOutputCP
ExitProcess
GetConsoleCP
GetFileSize
CreateDirectoryA
ExitProcess
CreateThread
CreateProcessA
GetOEMCP
GetConsoleOutputCP
FindFirstFileA
DeleteFileA
GetProcessHeap
GetACP
GetConsoleMode
OpenFile
Sleep
GetCommandLineA
DeleteFileW
CreateDirectoryA
OpenFile
GetFileSize
GetOEMCP
DeleteAtom
FindAtomA
GetACP
GetConsoleCP
Sleep
FindFirstFileA
GetFileTime
GetStdHandle
GetConsoleMode
GetCommandLineA
GetLastError
GetComputerNameA
GetCommandLineA

Sections

.text
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 67KB - Virtual size: 371KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 571B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7ad054e910578ebea65f03145c017841

Headers

File Characteristics

Imports

user32

advapi32

kernel32

Sections

.text Size: 26KB - Virtual size: 26KB

.rdata Size: 5KB - Virtual size: 4KB

.bss Size: 67KB - Virtual size: 371KB

.idata Size: 5KB - Virtual size: 4KB

.rsrc Size: 1024B - Virtual size: 571B

.text
Size: 26KB - Virtual size: 26KB

.rdata
Size: 5KB - Virtual size: 4KB

.bss
Size: 67KB - Virtual size: 371KB

.idata
Size: 5KB - Virtual size: 4KB

.rsrc
Size: 1024B - Virtual size: 571B