369e4e031925b1e341482e630be93731_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

369e4e031925b1e341482e630be93731_JaffaCakes118
Size

250KB
MD5

369e4e031925b1e341482e630be93731
SHA1

8594667f550b149e0647f73c21d86fd8682e3d41
SHA256

b15994a02277806761ee08000789017db73c71849ac3c60ba93d9052670082bb
SHA512

a317a544e62dbb44254b29553f29077bb01320a56f98876cc3ec4ccaed47efbe88af0c052e407fff6bba62fe4a084b42fb194e4d253375101fdf64970f6e64dc
SSDEEP

3072:CemeCqBlpAhQ/7xeZha6/Gwc0mmJWa2IKKh:9vpAO56smJWa2IKKh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
369e4e031925b1e341482e630be93731_JaffaCakes118

Files

369e4e031925b1e341482e630be93731_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d6a4e61a08d6fe65f05292037a80312d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegQueryInfoKeyW
InitializeAcl
RegSetValueExW
RegSetValueExW
RegOpenKeyExA
RegSetValueExA
RegOpenKeyExW
AdjustTokenPrivileges
AddAccessAllowedAce
GetTokenInformation
RegQueryValueExA
InitializeAcl
RegCreateKeyExW
RegQueryValueExA
RegOpenKeyW
RegCreateKeyExA
RegSetValueExW
CloseServiceHandle
RegEnumValueW
InitializeAcl
RegSetValueExA
RegCreateKeyExW
OpenProcessToken
RegOpenKeyExA
InitializeSecurityDescriptor
InitializeSecurityDescriptor
RegDeleteValueW
RegDeleteValueW
AdjustTokenPrivileges
AllocateAndInitializeSid
OpenProcessToken
RegDeleteValueW
RegCloseKey
RegEnumKeyExW
RegOpenKeyW
InitializeAcl
RegDeleteValueW
GetLengthSid
InitializeAcl
AllocateAndInitializeSid
RegCreateKeyExW
RegCreateKeyExW
AllocateAndInitializeSid
RegDeleteValueW

user32

GetMenuStringA
GetTopWindow
FindWindowA
OpenDesktopA
SendMessageCallbackW
RegisterHotKey
GetDlgItem
GetSystemMetrics
GetSysColor
PostMessageA
OpenIcon
SetCursor
DispatchMessageA
GetWindowRect
GetTopWindow
DrawCaption
GetDlgCtrlID
DlgDirListComboBoxA
VkKeyScanExA
VkKeyScanExW
DispatchMessageW
GetWindow
LockWindowUpdate
UnpackDDElParam
GetWindowTextLengthA
GetSysColorBrush
SetWindowLongW
GetGuiResources
MonitorFromRect
EnumWindows
GetCursorPos
DlgDirSelectComboBoxExA
SetWindowsHookA
IMPGetIMEA
GetMessagePos
GetKeyboardLayout
IsCharUpperW
IsChild
DdeAbandonTransaction
UnregisterClassA
CheckDlgButton
GetTabbedTextExtentA
ScrollDC
GetWindowRect
GetKeyboardType

Sections

.code
Size: 200KB - Virtual size: 2.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 72KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 15KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 16KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 16KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 7KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d6a4e61a08d6fe65f05292037a80312d

Headers

File Characteristics

Imports

advapi32

user32

Sections

.code Size: 200KB - Virtual size: 2.6MB

.idata Size: 4KB - Virtual size: 72KB

.idata Size: 4KB - Virtual size: 72KB

.idata Size: 15KB - Virtual size: 28KB

.idata Size: 1KB - Virtual size: 16KB

.idata Size: 1KB - Virtual size: 16KB

.idata Size: 1KB - Virtual size: 16KB

.idata Size: 1KB - Virtual size: 16KB

.idata Size: 1KB - Virtual size: 16KB

.idata Size: 1KB - Virtual size: 16KB

.idata Size: 1KB - Virtual size: 16KB

.idata Size: 7KB - Virtual size: 64KB

.code
Size: 200KB - Virtual size: 2.6MB

.idata
Size: 4KB - Virtual size: 72KB

.idata
Size: 4KB - Virtual size: 72KB

.idata
Size: 15KB - Virtual size: 28KB

.idata
Size: 1KB - Virtual size: 16KB

.idata
Size: 1KB - Virtual size: 16KB

.idata
Size: 1KB - Virtual size: 16KB

.idata
Size: 1KB - Virtual size: 16KB

.idata
Size: 1KB - Virtual size: 16KB

.idata
Size: 1KB - Virtual size: 16KB

.idata
Size: 1KB - Virtual size: 16KB

.idata
Size: 7KB - Virtual size: 64KB