0652e7426e8adaac3e2e47d5f36cc469_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0652e7426e8adaac3e2e47d5f36cc469_JaffaCakes118
Size

291KB
MD5

0652e7426e8adaac3e2e47d5f36cc469
SHA1

f8118e6818a84e0cb99f4976d45edcb86e76381e
SHA256

0d9bb8df4197f952b927a728a6db75a6d9a163f9d6b758ebd7761ea7d615beba
SHA512

68dff649511ab2db9e746bba630bf7cb422a1cb4aa7f536b413f591616dab06190aa52ad6c34f5ecdfeddbb19b2a7bc3db775096f5ea25cd41aea6ad050a5029
SSDEEP

6144:Fk0xRvM4y5P43DbRshpvCe5ENH4FMCxnTtzK34XT6bcaesqd:dxRvMx43DFA1p5PxTtzK3Sebcaed

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0652e7426e8adaac3e2e47d5f36cc469_JaffaCakes118

Files

0652e7426e8adaac3e2e47d5f36cc469_JaffaCakes118
.dll windows:4 windows x86 arch:x86

05d5898e38926b5c1e9f7ae0a3a6d44e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Imports

user32

DialogBoxParamW
GetFocus
LoadMenuA
CopyRect
CloseWindow
CreateIcon
DrawIcon
GetCursor
DrawTextA
AppendMenuA
IsWindow
AlignRects
GetDC
DrawTextW
AppendMenuW
IsMenu
CalcMenuBar
GetWindowTextLengthA
IsMenu
DrawTextA
IsWindow
BlockInput
GetDlgItem
GetCursor
GetDC
GetWindowTextLengthA
GetMenu
LoadMenuA
AppendMenuA
CopyRect
DrawTextW
GetFocus
AppendMenuW
GetWindowTextA
DialogBoxParamW
CopyIcon
LoadCursorA
GetDC
DrawTextW
DrawTextA
EndDialog
CloseWindow
AppendMenuW
AlignRects
GetWindowTextLengthA
DrawIconEx
GetCursor
DialogBoxParamA
IsWindow
AppendMenuA

kernel32

Sleep
GetCPInfo
GetComputerNameA
OpenFileMappingA
CopyFileW
GetStdHandle
ExitThread
ReadFile
DeleteFileW
GetFileSize
GetConsoleMode
CreateThread
CopyFileA
SetLastError
FindFirstFileA
DeleteFileA
FindAtomA
CreateProcessA
GetFileSize
GlobalFree
CreateDirectoryA
OpenFileMappingA
DeleteAtom
CopyFileW
ReadConsoleA
ExitThread
Sleep
CopyFileExA
GetCPInfo
CreateDirectoryA
GetStdHandle
CopyFileW
CopyFileA
ReadConsoleA
SetLastError
ExitThread
GetCPInfo
GetComputerNameA
WriteFile
DeleteAtom

advapi32

RegCreateKeyExA
RegQueryInfoKeyW
RegLoadKeyW
RegOpenKeyA
RegCreateKeyW
RegEnumValueW
RegCreateKeyExW
RegEnumKeyExW
RegDeleteKeyA
RegQueryValueW
RegEnumKeyA
RegDeleteValueW
RegQueryInfoKeyA
RegQueryValueExA
RegEnumKeyExA
RegCreateKeyExA
RegOpenKeyA
RegLoadKeyW
RegOpenKeyW
RegDeleteKeyW
RegCreateKeyW
RegGetKeySecurity
RegQueryInfoKeyA
RegOpenKeyExW
RegEnumKeyW
RegQueryValueA
RegEnumValueW
RegQueryInfoKeyA
RegEnumKeyExW
RegCreateKeyExW
RegQueryInfoKeyW
RegOpenKeyExW
RegDeleteValueW
RegReplaceKeyA
RegQueryValueW
RegReplaceKeyW
RegEnumKeyA
RegQueryValueExW
RegEnumKeyW
RegEnumKeyExA
RegCreateKeyExA
RegCreateKeyExA
RegDeleteValueW
RegDeleteKeyA
RegOpenKeyExA
RegEnumKeyExA
RegQueryValueExA
RegGetKeySecurity
RegOpenKeyW
RegLoadKeyW
RegQueryValueExW

comctl32

ImageList_LoadImageA
ImageList_LoadImage
ImageList_AddMasked
ImageList_BeginDrag
ImageList_DragShowNolock
ImageList_LoadImageW
ImageList_EndDrag
ImageList_ReplaceIcon
ImageList_DrawIndirect
ImageList_DragLeave
ImageList_GetIcon
ImageList_Draw

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.init
Size: 277KB - Virtual size: 277KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 471B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 349KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

05d5898e38926b5c1e9f7ae0a3a6d44e

Headers

File Characteristics

Imports

user32

kernel32

advapi32

comctl32

Sections

.text Size: 6KB - Virtual size: 6KB

.data Size: - Virtual size: 2KB

.init Size: 277KB - Virtual size: 277KB

.idata Size: 5KB - Virtual size: 4KB

.edata Size: 512B - Virtual size: 471B

.rdata Size: 512B - Virtual size: 349KB

.text
Size: 6KB - Virtual size: 6KB

.data
Size: - Virtual size: 2KB

.init
Size: 277KB - Virtual size: 277KB

.idata
Size: 5KB - Virtual size: 4KB

.edata
Size: 512B - Virtual size: 471B

.rdata
Size: 512B - Virtual size: 349KB