18967fc9f31347cf7469202ba29ef908_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

18967fc9f31347cf7469202ba29ef908_JaffaCakes118
Size

182KB
MD5

18967fc9f31347cf7469202ba29ef908
SHA1

9e8c52df8dc554cf424dd534fe791ab4c5bfeed9
SHA256

79cfe5bb464f8555afea16803e68ddb0c0736ac4cbac33e0d66c8c77f482628c
SHA512

2257f23f49c3d190575e17c31d1a20e6c814aa985ed93fbb03179140069b766c51ff5f943ec93e1d049ba08b0e2115e7cdfdf012e1a2a213fffd6df8e3abc380
SSDEEP

3072:R224SkRO8UOEYYUZEyTngKd16WVh8pt+fk94++pSIzkWK:R22IJEIngKd1phQUUH6SIz9K

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
18967fc9f31347cf7469202ba29ef908_JaffaCakes118

Files

18967fc9f31347cf7469202ba29ef908_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d31002f4a0d7655920e8046aba69668b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetFileSize
GetStdHandle
GetCommandLineA
ReadConsoleA
DeleteAtom
GetComputerNameA
Sleep
ReadFile
GetLastError
DeleteFileA
CreateThread
ExitThread
FindFirstFileA
CopyFileExW
CreateProcessA
SetLastError
GlobalFree
OpenFile
Sleep
DeleteFileA
GetCommandLineA
CreateThread
OpenFileMappingA
GetFileTime
GetConsoleMode
FindFirstFileA
CreateDirectoryA
DeleteFileW
CopyFileW
CreateProcessA
ReadConsoleA
Sleep
CreateDirectoryA
ReadFile
DeleteFileW
WriteFile
FindAtomA
ExitThread
GetCPInfo
GetLastError
CopyFileExW
GetCommandLineA
GetCPInfo
CopyFileA
Sleep
GetFileTime
GetStdHandle
DeleteFileA
GlobalFree
GetFileSize
CreateDirectoryA
CopyFileExA
GetCommandLineA
ReadConsoleA
GetComputerNameA
CopyFileExW
DeleteFileW
CreateThread
WriteFile
ReadFile
SetLastError
ReadFile
ReadConsoleA
CreateProcessA
GlobalFree
GetCPInfo
DeleteAtom
OpenFile
CreateDirectoryA
GetFileSize
CopyFileW
GetCommandLineA
SetLastError
GetFileTime
CopyFileExA
DeleteFileA
WriteFile
CopyFileExW

comctl32

ImageList_Read
ImageList_GetIconSize
ImageList_BeginDrag
ImageList_AddIcon
ImageList_LoadImageA
ImageList_GetImageCount
ImageList_LoadImage
ImageList_Replace
InitCommonControls
ImageList_ReplaceIcon
ImageList_DragMove
ImageList_Merge
ImageList_DragEnter
ImageList_LoadImage
ImageList_LoadImageA
ImageList_GetIconSize
ImageList_GetIcon
ImageList_GetImageRect
ImageList_DragLeave
ImageList_Replace
ImageList_Read
ImageList_Copy
ImageList_AddIcon
ImageList_LoadImageW
ImageList_ReplaceIcon
ImageList_Destroy
ImageList_GetImageInfo
ImageList_DrawIndirect
InitCommonControls
ImageList_DragEnter
ImageList_DragMove
ImageList_GetDragImage

user32

CopyRect
InsertMenuA
AlignRects
LoadCursorA
CopyImage
LoadMenuA
DrawTextA
CalcMenuBar
DrawIconEx
AppendMenuW
DialogBoxParamW
CopyIcon
BlockInput
GetDlgItem
GetWindowTextA
IsMenu
EndDialog
DrawIcon

advapi32

RegReplaceKeyW
RegFlushKey
RegEnumValueW
RegOpenKeyExW
RegQueryValueA
RegEnumKeyW
RegReplaceKeyA
RegOpenKeyW
RegEnumKeyExA
RegQueryValueExA
RegCreateKeyExW
RegQueryValueW
RegQueryInfoKeyW
RegEnumKeyA
RegLoadKeyA
RegGetKeySecurity
RegDeleteKeyW
RegLoadKeyW
RegDeleteValueA

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.init
Size: 173KB - Virtual size: 172KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 252B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d31002f4a0d7655920e8046aba69668b

Headers

File Characteristics

Imports

kernel32

comctl32

user32

advapi32

Sections

.text Size: 3KB - Virtual size: 2KB

.data Size: - Virtual size: 3KB

.init Size: 173KB - Virtual size: 172KB

.idata Size: 4KB - Virtual size: 3KB

.edata Size: 512B - Virtual size: 252B

.rdata Size: 512B - Virtual size: 4KB

.text
Size: 3KB - Virtual size: 2KB

.data
Size: - Virtual size: 3KB

.init
Size: 173KB - Virtual size: 172KB

.idata
Size: 4KB - Virtual size: 3KB

.edata
Size: 512B - Virtual size: 252B

.rdata
Size: 512B - Virtual size: 4KB