01d03268e8cd60df2bda50c438b43806_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

01d03268e8cd60df2bda50c438b43806_JaffaCakes118
Size

84KB
MD5

01d03268e8cd60df2bda50c438b43806
SHA1

7af124867d2de24fc0ae5e923a5f31f4faa84b79
SHA256

fc3486c8dd3dc7986c7b8162947e4a6f8dc99fc8d72bb533de08e3ca041caa14
SHA512

ce9214098d00769d9f78e06e2f3257011db0ceb8b72865bbb4ddb92146a57124ba23c517ea60f64ef5c401123d7070c39105b0c3a0cfe807e768b82f98fe12ab
SSDEEP

1536:o4RHYoJq0bU3m3oQ7EQM77lTlAT7nQP7CirP:XRHZJxbU3mmQMvplyEP7fP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
01d03268e8cd60df2bda50c438b43806_JaffaCakes118

Files

01d03268e8cd60df2bda50c438b43806_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9bf9badf0b80dcc7d097be8560f28ff7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

RestoreDC
SetTextColor
GetBrushOrgEx
CopyMetaFileA
AbortPath
ClearBitmapAttributes
ExtTextOutA
GetDCOrgEx
GetClipBox
AddFontResourceExW
AddFontMemResourceEx
BitBlt
AddFontResourceA
CreateSolidBrush
GetPixel
GetPixel
AddFontResourceExA
GetBitmapBits
AddFontResourceW

comctl32

ImageList_GetImageCount
ImageList_DragMove
ImageList_Read
ImageList_DragLeave
ImageList_DragShowNolock
ImageList_DrawEx
ImageList_LoadImage
ImageList_GetImageRect
ImageList_DragEnter
ImageList_BeginDrag
ImageList_GetIconSize
ImageList_GetDragImage
ImageList_Merge
ImageList_Copy
InitCommonControls
ImageList_GetImageInfo
ImageList_Replace
ImageList_DrawIndirect

advapi32

RegGetKeySecurity
RegFlushKey
RegEnumValueA
RegOpenKeyA
RegQueryValueExA
RegDeleteValueW
RegCreateKeyExW
RegOpenKeyExA
RegReplaceKeyW
RegEnumKeyExA
RegDeleteValueA
RegReplaceKeyA
RegQueryValueW
RegOpenKeyExW
RegDeleteKeyA
RegCreateKeyExA
RegEnumKeyA
RegLoadKeyA
RegQueryValueExW
RegDeleteKeyW

kernel32

GetFullPathNameA
GetLastError
GetCommandLineA
HeapAlloc
SetLastError
GetStringTypeW
GetModuleHandleA
GetStdHandle
GetFileAttributesA
lstrcatA
WideCharToMultiByte
GlobalFree
GlobalAlloc
lstrcpyA
GetStringTypeA
GetModuleFileNameA
GetFileType
Sleep
GetLocalTime

user32

CopyImage
LoadCursorA
EndDialog
GetWindowTextA
BlockInput
CalcMenuBar
GetCursor
AppendMenuW
GetFocus
DrawIconEx
CopyRect
LoadMenuA
DrawIcon
CloseWindow
GetDC
GetMenu
DialogBoxParamA

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9bf9badf0b80dcc7d097be8560f28ff7

Headers

File Characteristics

Imports

gdi32

comctl32

advapi32

kernel32

user32

Sections

.text Size: 8KB - Virtual size: 4KB

.data Size: 64KB - Virtual size: 63KB

.rdata Size: 4KB - Virtual size: 90KB

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: - Virtual size: 1KB

.text
Size: 8KB - Virtual size: 4KB

.data
Size: 64KB - Virtual size: 63KB

.rdata
Size: 4KB - Virtual size: 90KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: - Virtual size: 1KB