162a890ae4bec86bfc87706ed70c79be_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

162a890ae4bec86bfc87706ed70c79be_JaffaCakes118
Size

72KB
MD5

162a890ae4bec86bfc87706ed70c79be
SHA1

917ef5978aa9fdd5fb76665230c9285577c93f6a
SHA256

94e1a94159a1db6de1caba223a76e2484cdcdb2d8a28cb23647dd0c8f4eb2195
SHA512

9615172845214f8025d1dafa449e52be4855f31837d543235192d8a1a35d8bca092c8c520f7b7e7ea60ecec77e008ab954e6da8c30385c0477fad7f35518ee8e
SSDEEP

1536:2+cOFu/nnTCt8+/gLMPv5etDLRe/Toqe2kiZ:zcOEPTQ8+/gL8kLNqeH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
162a890ae4bec86bfc87706ed70c79be_JaffaCakes118

Files

162a890ae4bec86bfc87706ed70c79be_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3cd2f1d3448e740c321542a32f54d427

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetDateFormatA
GetCPInfo
FreeLibrary
GetCommandLineA
GetLastError
GetModuleHandleA
GlobalFree
WideCharToMultiByte
GetLocalTime
GetStdHandle
CloseHandle
lstrcpynA
GetFileType
lstrcmpiA
DeleteFileA
GlobalAlloc
GetStringTypeW
lstrlenA
SetLastError

user32

GetDlgItem
InsertMenuA
IsMenu
DrawIconEx
CreateIcon
AppendMenuA
IsWindow
CopyImage
GetDC
DialogBoxParamW
EndDialog
CopyIcon
DrawTextW
LoadCursorA
GetCursor
CloseWindow
AppendMenuW
GetWindowTextLengthA
AlignRects
DialogBoxParamA
IsWindow
AppendMenuW
DrawTextA
GetFocus
CopyIcon
EndDialog
CloseWindow
LoadCursorA
GetWindowTextLengthA
DrawTextW
CopyRect
DrawIcon
DialogBoxParamA
DrawIconEx
LoadMenuA
GetDC

comctl32

ImageList_GetDragImage
ImageList_Replace
ImageList_LoadImageW
ImageList_DragLeave
ImageList_AddMasked
ImageList_GetImageInfo
ImageList_ReplaceIcon
ImageList_GetIconSize
InitCommonControls
ImageList_DrawIndirect
ImageList_EndDrag
ImageList_Draw
ImageList_Merge
ImageList_GetImageCount
ImageList_LoadImage
ImageList_Copy

advapi32

RegEnumKeyExA
RegOpenKeyExA
RegQueryValueA
RegCreateKeyExW
RegDeleteKeyW
RegEnumKeyA
RegReplaceKeyA
RegQueryInfoKeyA
RegLoadKeyA
RegOpenKeyW
RegReplaceKeyW
RegDeleteValueA
RegEnumValueA
RegQueryValueW
RegFlushKey
RegOpenKeyA

Sections

.text
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.vdata
Size: 52KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3cd2f1d3448e740c321542a32f54d427

Headers

File Characteristics

Imports

kernel32

user32

comctl32

advapi32

Sections

.text Size: 4KB - Virtual size: 1KB

.vdata Size: 52KB - Virtual size: 48KB

.rdata Size: 8KB - Virtual size: 71KB

.idata Size: 3KB - Virtual size: 2KB

.edata Size: 1024B - Virtual size: 2KB

.text
Size: 4KB - Virtual size: 1KB

.vdata
Size: 52KB - Virtual size: 48KB

.rdata
Size: 8KB - Virtual size: 71KB

.idata
Size: 3KB - Virtual size: 2KB

.edata
Size: 1024B - Virtual size: 2KB