197c81f1241f079821ecf0c8475c12cc_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

197c81f1241f079821ecf0c8475c12cc_JaffaCakes118
Size

80KB
MD5

197c81f1241f079821ecf0c8475c12cc
SHA1

a2893a97fb15b0812cee965fb9d8c1896c752bee
SHA256

3fdc6b366a5176a8d1ffa86ea9c0dc1066f8bbeac38df2c0717082b91677deaf
SHA512

7670fcfe409d3bba8ba7048848f5639b68cbb37a235f791525d3558faa9c3d7543b310a7ed7e1e14f8e066bd383cd8e9bb0017f43ff4f7d9a8c346745c7321bd
SSDEEP

768:WUCVz5bpcjQ86DZZjhZbfXn5naRTMQ9btdjKte6PesAl6WmsPJAoiZPvBRN:sNba5CnbzX5na57ZZKwL560xAXZX3N

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
197c81f1241f079821ecf0c8475c12cc_JaffaCakes118

Files

197c81f1241f079821ecf0c8475c12cc_JaffaCakes118
.exe windows:4 windows x86 arch:x86

cfffaa2c11ff4b5ba9d523d04f59cd7d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

EndDialog
AppendMenuA
AppendMenuW
CalcMenuBar
GetWindowTextLengthA
DrawTextA
LoadMenuA
GetDC
LoadCursorA
CloseWindow
GetWindowTextA
GetFocus
CopyImage
IsWindow
AppendMenuA
InsertMenuA
DrawIconEx
DrawTextW
DialogBoxParamA
GetDlgItem
CopyRect
AppendMenuW
LoadMenuA
BlockInput
DrawIcon
GetCursor
CopyIcon
AlignRects
GetMenu
DialogBoxParamW

advapi32

RegQueryValueW
RegOpenKeyExA
RegEnumKeyW
RegDeleteValueA
RegQueryValueA
RegEnumKeyA
RegEnumValueA
RegEnumKeyExA
RegCreateKeyExA
RegEnumValueW
RegReplaceKeyA
RegOpenKeyW
RegReplaceKeyW
RegLoadKeyW
RegFlushKey
RegGetKeySecurity
RegLoadKeyA
RegDeleteValueW

kernel32

DeleteFileA
GetStdHandle
GetCPInfo
FindAtomA
GetFileSize
GetLastError
ExitThread
DeleteAtom
Sleep
OpenFileMappingA
CopyFileExW
GlobalFree
ReadFile
OpenFile
ReadConsoleA
WriteFile
GetFileTime
CopyFileA
SetLastError
CreateProcessA
DeleteFileA
DeleteAtom
GlobalFree
GetFileTime
GetCommandLineA
GetConsoleMode
SetLastError
ReadFile
FindFirstFileA
WriteFile
CopyFileA
CreateThread
ExitThread
GetFileSize
OpenFileMappingA
GetComputerNameA
OpenFile

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.jedata
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 4KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cfffaa2c11ff4b5ba9d523d04f59cd7d

Headers

File Characteristics

Imports

user32

advapi32

kernel32

Sections

.text Size: 4KB - Virtual size: 3KB

.jedata Size: 52KB - Virtual size: 51KB

.tls Size: 4KB - Virtual size: 4KB

.rdata Size: 8KB - Virtual size: 7KB

.idata Size: 4KB - Virtual size: 2KB

.edata Size: 4KB - Virtual size: 28KB

.text
Size: 4KB - Virtual size: 3KB

.jedata
Size: 52KB - Virtual size: 51KB

.tls
Size: 4KB - Virtual size: 4KB

.rdata
Size: 8KB - Virtual size: 7KB

.idata
Size: 4KB - Virtual size: 2KB

.edata
Size: 4KB - Virtual size: 28KB