0e5b078aa8813bbab51ebe5726722ca1_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0e5b078aa8813bbab51ebe5726722ca1_JaffaCakes118
Size

39KB
MD5

0e5b078aa8813bbab51ebe5726722ca1
SHA1

9949130f66a5385e0ceeb5c21d6b4e6b472a244f
SHA256

fbc641139f10b47cc1e42cff92b065d16dd3a9011804ff9b5824ef749a12cb9f
SHA512

6707887c07f8964df48011abeda03ba499031dee853b54a47e7fb7b196191489936e3f034ba908b9beb7d2330092aae8bf0588c5a4a4e5cab60e039f96d7ab6e
SSDEEP

768:UXgDOsZE0GTGHpqEwlGt/D1pPA/AUviSNXyPhuGkvYlWCVOQo3x:UXKZE0Gapelgr1VAOSNiUvYlVV6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0e5b078aa8813bbab51ebe5726722ca1_JaffaCakes118

Files

0e5b078aa8813bbab51ebe5726722ca1_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c4b08399a49c8ba991e2eea64bc3377e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegQueryValueW
RegQueryValueExA
RegReplaceKeyW
RegGetKeySecurity
RegCreateKeyExW
RegReplaceKeyA
RegCreateKeyExA
RegLoadKeyW
RegDeleteKeyW
RegQueryInfoKeyA
RegEnumKeyW
RegFlushKey
RegOpenKeyExW
RegDeleteKeyA
RegDeleteValueW
RegOpenKeyA
RegEnumValueA
RegLoadKeyA
RegEnumValueW
RegEnumKeyExA
RegEnumKeyExW
RegReplaceKeyW
RegQueryValueA
RegQueryValueExW
RegQueryInfoKeyW
RegDeleteKeyA
RegQueryValueExA
RegEnumKeyExA
RegReplaceKeyA
RegLoadKeyW
RegEnumValueW
RegOpenKeyW
RegOpenKeyA
RegCreateKeyW
RegEnumKeyA
RegGetKeySecurity
RegEnumKeyW
RegQueryValueW
RegEnumKeyExW
RegOpenKeyExW
RegCreateKeyExA

comctl32

ImageList_Copy
ImageList_Merge
ImageList_ReplaceIcon
ImageList_BeginDrag
ImageList_GetDragImage
ImageList_DrawEx
ImageList_LoadImageA
ImageList_Destroy
ImageList_DrawIndirect
ImageList_Replace
ImageList_DragLeave
ImageList_Read
ImageList_LoadImageW
ImageList_GetImageCount
ImageList_LoadImage
ImageList_DragEnter
InitCommonControls
ImageList_GetImageInfo
ImageList_Draw
ImageList_GetIconSize
ImageList_AddIcon
ImageList_EndDrag
ImageList_DragShowNolock
ImageList_DrawIndirect
ImageList_Merge
ImageList_Draw
ImageList_GetDragImage
ImageList_AddIcon
InitCommonControls
ImageList_Read
ImageList_Remove
ImageList_ReplaceIcon
ImageList_LoadImageW
ImageList_BeginDrag
ImageList_GetIconSize
ImageList_Copy
ImageList_EndDrag
ImageList_Destroy
ImageList_Create
ImageList_GetImageInfo
ImageList_AddIcon
InitCommonControls
ImageList_LoadImageW
ImageList_GetIconSize
ImageList_Merge
ImageList_DragLeave
ImageList_Read
ImageList_ReplaceIcon
ImageList_LoadImageA
ImageList_EndDrag
ImageList_DragShowNolock
ImageList_GetDragImage
ImageList_GetImageCount
ImageList_DrawIndirect
ImageList_LoadImage
ImageList_DragMove
ImageList_Remove
ImageList_BeginDrag
ImageList_Replace
ImageList_Draw
ImageList_DrawEx

gdi32

CreateSolidBrush
AddFontResourceTracking
ClearBrushAttributes
AddFontResourceExW
SetTextColor
DeleteObject
AbortPath
DeleteDC
GetPixel
AddFontResourceA
AddFontResourceW
CancelDC
AddFontMemResourceEx
RestoreDC
ClearBitmapAttributes
CloseMetaFile
GetDCOrgEx
ExcludeClipRect
BeginPath
GetPixel
DeleteDC
GetClipBox
ExtTextOutA
AddFontResourceTracking
AddFontResourceA
ExcludeClipRect
SetTextColor
RestoreDC
CloseMetaFile
CancelDC
ClearBrushAttributes
GetBitmapBits
BitBlt
AddFontResourceExA
GetPixel
SetTextColor
RestoreDC
CreateSolidBrush
AddFontResourceTracking
DeleteDC
GetPixel
ExcludeClipRect
GetBrushOrgEx
ClearBrushAttributes
GetPixel
AddFontResourceW
AddFontResourceExW
AddFontResourceA
AbortPath
GetBitmapBits
CloseMetaFile
GetClipBox
AddFontResourceExA
BitBlt
AddFontMemResourceEx
CancelDC
GetDCOrgEx
DeleteObject

kernel32

ReadConsoleA
Sleep
DeleteFileA
ExitThread
OpenFileMappingA
CreateThread
CopyFileW
SetLastError
FindFirstFileA
CreateDirectoryA
CopyFileA
CreateProcessA
GetFileTime
OpenFile
ReadFile
ExitThread
GetCPInfo
GetFileTime
ReadConsoleA
GetLastError
WriteFile
ReadFile
GlobalFree
CreateThread
GetComputerNameA
CopyFileW
GetConsoleMode
DeleteAtom
CreateProcessA
SetLastError
CreateDirectoryA
FindAtomA
OpenFileMappingA
GetLastError
SetLastError
CopyFileW
DeleteFileA
GetStdHandle
OpenFileMappingA
CopyFileExA
GetComputerNameA
DeleteFileW
GlobalFree
FindFirstFileA
CopyFileExW
GetCPInfo
OpenFile
GetCommandLineA
GetConsoleMode
CreateThread
CreateDirectoryA
GetFileTime
ReadConsoleA
CopyFileA
Sleep
FindAtomA

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 23KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 840B

IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c4b08399a49c8ba991e2eea64bc3377e

Headers

File Characteristics

Imports

advapi32

comctl32

gdi32

kernel32

Sections

.text Size: 2KB - Virtual size: 2KB

.rdata Size: 6KB - Virtual size: 6KB

.data Size: 23KB - Virtual size: 24KB

.reloc Size: - Virtual size: 840B

.rsrc Size: 6KB - Virtual size: 8KB

.text
Size: 2KB - Virtual size: 2KB

.rdata
Size: 6KB - Virtual size: 6KB

.data
Size: 23KB - Virtual size: 24KB

.reloc
Size: - Virtual size: 840B

.rsrc
Size: 6KB - Virtual size: 8KB