1a64766557122cfdc1a4aa6fd51a5b20_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

1a64766557122cfdc1a4aa6fd51a5b20_JaffaCakes118
Size

40KB
MD5

1a64766557122cfdc1a4aa6fd51a5b20
SHA1

1323b317b26f535aa1b69959cee462b1a4a1145c
SHA256

0fd264a09d0701ffa73fe8c0a1e8f079c36249d48e3717322aa98ba105eaa300
SHA512

df97cac87edaf0351666644f82102ddde5dc6c8fc5992ed6624dcca3af5f9332e465a709189fd910de96320e14e1f369fea91a453e139d4f31871fc9462a43cc
SSDEEP

768:x9aZgPq89coRl6WoV5n5I0B7uJYJsgctybOPtSB0o3:myqtoD6B5nO0gJUvQI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1a64766557122cfdc1a4aa6fd51a5b20_JaffaCakes118

Files

1a64766557122cfdc1a4aa6fd51a5b20_JaffaCakes118
.exe windows:4 windows x86 arch:x86

fa834f8fde37f2f7ecd25255730f6e63

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegFlushKey
RegOpenKeyExA
RegCreateKeyExA
RegReplaceKeyA
RegDeleteValueA
RegOpenKeyW
RegDeleteKeyW
RegEnumKeyExW
RegOpenKeyExW
RegCreateKeyW
RegQueryValueExW
RegQueryValueA
RegQueryValueW
RegQueryValueExA
RegDeleteValueW
RegReplaceKeyW
RegGetKeySecurity
RegQueryInfoKeyW
RegEnumKeyA
RegQueryInfoKeyA
RegQueryInfoKeyW
RegCreateKeyW
RegCreateKeyExA
RegCreateKeyExW
RegOpenKeyW
RegEnumValueA
RegEnumKeyExW
RegLoadKeyW
RegEnumKeyA
RegFlushKey
RegDeleteKeyW
RegDeleteValueA
RegEnumKeyW
RegQueryValueExW
RegQueryInfoKeyA
RegDeleteValueW
RegEnumKeyExA
RegQueryValueExA
RegDeleteKeyA
RegReplaceKeyA
RegGetKeySecurity
RegOpenKeyExW
RegOpenKeyA
RegQueryValueA
RegQueryValueExW
RegCreateKeyExW
RegOpenKeyW
RegOpenKeyExW
RegLoadKeyW
RegQueryInfoKeyA
RegEnumValueA
RegReplaceKeyW
RegOpenKeyA
RegEnumValueW
RegEnumKeyExW
RegCreateKeyExA
RegEnumKeyExA
RegQueryValueExA
RegReplaceKeyA
RegDeleteKeyA
RegCreateKeyW
RegDeleteValueA

kernel32

DeleteFileW
OpenFileMappingA
ExitThread
CreateProcessA
GetLastError
ReadFile
GetFileSize
CreateThread
GetCPInfo
CopyFileW
DeleteFileA
GetFileTime
FindFirstFileA
GetStdHandle
CopyFileExW
CopyFileA
GlobalFree
DeleteAtom
OpenFile
GetCommandLineA
SetLastError
GetStdHandle
DeleteFileW
CopyFileA
FindFirstFileA
ReadFile
DeleteAtom
GetConsoleMode
GetCommandLineA
OpenFile
GetFileSize
GetCPInfo
GetComputerNameA
ReadConsoleA
CreateDirectoryA
GlobalFree
WriteFile
Sleep
CreateThread
CopyFileExW
CopyFileW
CopyFileExA
OpenFileMappingA
GetFileSize
ReadFile
DeleteFileA
GetComputerNameA
OpenFile
SetLastError
CopyFileExA
GetStdHandle
ExitThread
ReadConsoleA
CreateDirectoryA
OpenFileMappingA
GetFileTime
GetConsoleMode
Sleep
DeleteFileW
WriteFile
CreateProcessA
GetCommandLineA
DeleteAtom
CopyFileExW
CopyFileA
GetStdHandle
WriteFile
DeleteFileA
SetLastError
CopyFileA
GetLastError
DeleteAtom
OpenFileMappingA
GetCommandLineA
OpenFile
GetComputerNameA
CreateThread
CopyFileExW
CopyFileExA
GetFileSize
GetConsoleMode
CreateProcessA
GlobalFree

gdi32

ClearBrushAttributes
DeleteDC
RestoreDC
AddFontResourceExA
CreateSolidBrush
GetBrushOrgEx
ExtTextOutA
AddFontResourceExW
AbortPath
CloseFigure
BitBlt
CopyMetaFileA
GetPixel
AddFontResourceW
GetCurrentPositionEx
DeleteObject
ExcludeClipRect
AddFontResourceA
AddFontMemResourceEx
BeginPath
ClearBitmapAttributes
GetClipBox
GetBitmapBits
SetTextColor
GetDCOrgEx
CloseMetaFile
DeleteObject
ClearBrushAttributes
RestoreDC
DeleteDC
ExcludeClipRect
CancelDC
AddFontResourceExA
CloseMetaFile
GetPixel
AddFontResourceA
AddFontResourceTracking
RestoreDC
AddFontMemResourceEx
DeleteObject
CloseFigure
DeleteDC
GetBitmapBits
AbortPath
GetClipBox
GetPixel
AddFontResourceExW
ClearBrushAttributes
GetCurrentPositionEx

user32

GetDC
CalcMenuBar
GetWindowTextLengthA
CopyRect
DrawTextW
AlignRects
GetMenu
LoadMenuA
InsertMenuA
GetWindowTextA
CopyIcon
IsMenu
BlockInput
DrawTextA
DialogBoxParamW
IsWindow
CreateIcon
EndDialog
CopyImage
DrawIconEx

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fa834f8fde37f2f7ecd25255730f6e63

Headers

File Characteristics

Imports

advapi32

kernel32

gdi32

user32

Sections

.text Size: 3KB - Virtual size: 2KB

.rdata Size: 6KB - Virtual size: 5KB

.data Size: 25KB - Virtual size: 34KB

.reloc Size: - Virtual size: 3KB

.rsrc Size: 5KB - Virtual size: 5KB

.text
Size: 3KB - Virtual size: 2KB

.rdata
Size: 6KB - Virtual size: 5KB

.data
Size: 25KB - Virtual size: 34KB

.reloc
Size: - Virtual size: 3KB

.rsrc
Size: 5KB - Virtual size: 5KB