0eae2015d06c38121ffb4b8b89f5ff9f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0eae2015d06c38121ffb4b8b89f5ff9f_JaffaCakes118
Size

66KB
MD5

0eae2015d06c38121ffb4b8b89f5ff9f
SHA1

53b6bd97afd28b209baadd92c741c9258fdd05a9
SHA256

f2dc1430f784063afab4a96bccfbefe67aa188780ab37e48dd625e356f62e786
SHA512

1b358e089ee5ac50c5fd85301c16f99a0c0f3dc863f3daba64745353726a9274b71a7fea97cab64ab93b69b75cbb81e16b7074713e5267d263690bc3c96e619c
SSDEEP

768:ungwATdiFcJxj33wsBQK9h7cj+y6vRnHrse0YlMSyv+H4oxzbFCO0HzskyObv5UX:14FE/BQmh7Ck6euHvw4oxzwxzskyq+P

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0eae2015d06c38121ffb4b8b89f5ff9f_JaffaCakes118

Files

0eae2015d06c38121ffb4b8b89f5ff9f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f576b98895b1f264975335ce505c8865

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHDoDragDrop
SHDefExtractIconW
DragQueryFileW
SHDefExtractIconA
DragFinish
FreeIconList
DragQueryFileAorW
SHUpdateImageW
ExtractIconA
CheckEscapesW
DragQueryFile
DragAcceptFiles
RestartDialog
SHFindFiles
ShellAboutA
SHUpdateImageA
SHChangeNotifyRegister
SHChangeNotifyDeregister
DragQueryFileA
FindExeDlgProc
ExtractIconExA
DragQueryPoint
CommandLineToArgvW
CheckEscapesA
ShellAboutA
SHDefExtractIconA
ExtractIconEx
SHDefExtractIconW
ExtractIconResInfoA
DllGetVersion
SHChangeNotifyRegister
ExtractIconExA
DragQueryFileAorW
DragQueryFile
DragQueryFileW
DragQueryPoint
PathGetShortPath
CommandLineToArgvW
FindExeDlgProc
CheckEscapesW

comctl32

DllInstall
CreateToolbar
CreateToolbarEx
CreateMappedBitmap
ImageList_AddIcon
CreateToolbar
ImageList_Add
ImageList_AddMasked
CreateStatusWindowA
ImageList_Copy
CreateToolbarEx
ImageList_Destroy
DrawInsert
CreateStatusWindowW
ImageList_DragEnter
CreateUpDownControl
CreateUpDownControl
MakeDragList
DrawStatusTextW
ImageList_BeginDrag
CreateMappedBitmap
DrawStatusTextA
DllGetVersion
MakeDragList
ImageList_AddMasked
CreateToolbar
CreateMappedBitmap
CreateStatusWindow
ImageList_BeginDrag
CreateUpDownControl
DrawInsert
DllInstall
ImageList_DragEnter
DrawStatusText
ImageList_DragLeave
DrawStatusTextW
MenuHelp
ImageList_AddIcon
ImageList_Destroy
ImageList_AddMasked
CreateToolbar
CreateStatusWindowW
CreateUpDownControl
DllInstall
DllGetVersion
ImageList_BeginDrag
ImageList_Create
CreateToolbarEx
InitCommonControls
CreateMappedBitmap
DrawInsert
CreateToolbarEx
DrawStatusTextA
ImageList_Add
CreateStatusWindowA
CreateStatusWindow
MenuHelp
ImageList_AddIcon

user32

AlignRects
CalcMenuBar
DrawIcon
DialogBoxParamA
LoadCursorA
CopyIcon
CreateIcon
GetWindowTextLengthA
CloseWindow
IsMenu
GetFocus
GetDlgItem
GetMenu
GetWindowTextA
DialogBoxParamW
CopyImage
EndDialog

advapi32

RegEnumValueA
RegEnumKeyW
RegLoadKeyA
RegOpenKeyExA
RegDeleteKeyW
RegDeleteValueA
RegDeleteKeyA
RegCreateKeyW
RegCreateKeyExA
RegQueryValueA
RegLoadKeyW
RegQueryValueExW
RegReplaceKeyW
RegEnumValueW
RegEnumKeyExW
RegOpenKeyW
RegDeleteValueA
RegQueryValueW
RegEnumValueA
RegLoadKeyA
RegDeleteValueW
RegCreateKeyExA
RegCreateKeyExW
RegOpenKeyA
RegEnumValueW
RegFlushKey
RegReplaceKeyW
RegQueryValueExA
RegQueryValueA
RegGetKeySecurity
RegQueryInfoKeyW
RegDeleteKeyW
RegEnumKeyW
RegQueryValueExW
RegQueryInfoKeyA
RegEnumKeyW
RegOpenKeyA
RegCreateKeyExW
RegQueryValueExW
RegOpenKeyExA
RegEnumValueA
RegReplaceKeyA
RegCreateKeyW
RegOpenKeyW
RegQueryInfoKeyW
RegQueryValueExA
RegQueryInfoKeyA
RegFlushKey
RegQueryValueW
RegDeleteValueA
RegLoadKeyW
RegEnumKeyA
RegOpenKeyExW

kernel32

OpenFile
GetStdHandle
ReadFile
CreateThread
GetLastError
GetComputerNameA
GetCommandLineA
GetCPInfo
GetConsoleMode
ReadConsoleA
GlobalFree
FindFirstFileA
DeleteFileW
SetLastError
Sleep
CreateDirectoryA
CreateProcessA
ExitThread

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 54KB - Virtual size: 184KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f576b98895b1f264975335ce505c8865

Headers

File Characteristics

Imports

shell32

comctl32

user32

advapi32

kernel32

Sections

.text Size: 5KB - Virtual size: 4KB

.rdata Size: 5KB - Virtual size: 5KB

.data Size: 54KB - Virtual size: 184KB

.text
Size: 5KB - Virtual size: 4KB

.rdata
Size: 5KB - Virtual size: 5KB

.data
Size: 54KB - Virtual size: 184KB