2605ce0bfec0c00bbebb9fc1c38de12d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2605ce0bfec0c00bbebb9fc1c38de12d_JaffaCakes118
Size

96KB
MD5

2605ce0bfec0c00bbebb9fc1c38de12d
SHA1

43d9c50881ddaf1d8f5c29a9ef03ea5a5753ef8c
SHA256

bdeb50e9646925bca6990936f854e54affd33d47a4fff1dae5c979911982b0bd
SHA512

e0463d66a426003771f62040e358d36d299f3b78d9e848d00b8fc64b30fffed78120cdc80fe965613fe185fdeb97d859a71eb46e5132399cf530715145cab7ea
SSDEEP

1536:moEsgxL/c/Eh5Xsg3wgAWyE1u0hFWJp+mqr80j+8BVzPpGk:5EfxJ58gggRz1uGCp+mUTFpGk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2605ce0bfec0c00bbebb9fc1c38de12d_JaffaCakes118

Files

2605ce0bfec0c00bbebb9fc1c38de12d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c487b75669d0a9501a2ea5c66a303486

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalFree
lstrcatA
GetModuleFileNameA
GetFileAttributesA
GetFileSize
WideCharToMultiByte
GetModuleHandleA
SetLastError
GetDateFormatA
HeapAlloc
FreeLibrary
GetCPInfo
GetFileType
GetCommandLineA
GetLastError
Sleep
lstrcpyA
GetLocalTime
DeleteFileA

user32

InsertMenuA
DrawIcon
EndDialog
CopyImage
DialogBoxParamA
CopyRect
IsWindow
GetCursor
BlockInput
GetWindowTextA
AppendMenuA
GetMenu
CloseWindow
DialogBoxParamW
AppendMenuW
GetDlgItem
AlignRects
GetWindowTextLengthA
DrawIconEx

advapi32

RegQueryValueA
RegReplaceKeyA
RegCreateKeyExW
RegQueryValueExW
RegGetKeySecurity
RegOpenKeyA
RegQueryInfoKeyA
RegEnumKeyExA
RegReplaceKeyW
RegFlushKey
RegEnumValueW
RegOpenKeyExA
RegEnumKeyA
RegQueryInfoKeyW
RegOpenKeyW
RegLoadKeyA
RegEnumKeyW
RegDeleteValueA
RegDeleteValueW

comctl32

ImageList_LoadImageW
ImageList_LoadImage
ImageList_LoadImageA
ImageList_DragEnter
ImageList_Read
ImageList_Destroy
ImageList_GetImageRect
ImageList_DragLeave
ImageList_BeginDrag
ImageList_ReplaceIcon
ImageList_GetImageInfo
ImageList_DrawIndirect
ImageList_GetIcon
ImageList_Remove
ImageList_Copy
ImageList_DragMove
ImageList_Merge
ImageList_GetImageCount
ImageList_GetDragImage
ImageList_Draw

Sections

.QjqGe
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ZOSKF
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.OzqnM
Size: 6KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.FmEadJ
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.caRu
Size: 1024B - Virtual size: 670B

IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c487b75669d0a9501a2ea5c66a303486

Headers

File Characteristics

Imports

kernel32

user32

advapi32

comctl32

Sections

.QjqGe Size: 11KB - Virtual size: 11KB

.ZOSKF Size: 72KB - Virtual size: 71KB

.OzqnM Size: 6KB - Virtual size: 115KB

.FmEadJ Size: 2KB - Virtual size: 2KB

.caRu Size: 1024B - Virtual size: 670B

.QjqGe
Size: 11KB - Virtual size: 11KB

.ZOSKF
Size: 72KB - Virtual size: 71KB

.OzqnM
Size: 6KB - Virtual size: 115KB

.FmEadJ
Size: 2KB - Virtual size: 2KB

.caRu
Size: 1024B - Virtual size: 670B