26c0f411d3f03184ff09bfffecd90b85_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

26c0f411d3f03184ff09bfffecd90b85_JaffaCakes118
Size

81KB
MD5

26c0f411d3f03184ff09bfffecd90b85
SHA1

c1de1644a9641c7129446e5cd59c6ba6b3bc23df
SHA256

9a6f0b0f22c500471b44e0900b6131ea9c8eb2c8c1ab6317fbc7dc8e510f02d4
SHA512

69542c7790b69a5bdf321652e251baaf0dcd101d29d2893e9cd8138cfe2f1fce264e1b114a15ebb8cfcfcfee03a634859a12a0cb2a8c60ab518639646777ffdf
SSDEEP

1536:93QT8VKPndv18RpqwJ/8ALeVcwTwAahecU1:92gKvRmqwF8ACVDwV3U

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
26c0f411d3f03184ff09bfffecd90b85_JaffaCakes118

Files

26c0f411d3f03184ff09bfffecd90b85_JaffaCakes118
.exe windows:4 windows x86 arch:x86

15410657d071bd8363adde9d296433bf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

comctl32

ImageList_AddIcon
ImageList_EndDrag
ImageList_LoadImage
ImageList_GetImageRect
ImageList_Read
ImageList_DragShowNolock
ImageList_Merge
ImageList_GetImageCount
ImageList_GetIcon
ImageList_GetIconSize
ImageList_DragMove
ImageList_DragEnter
ImageList_Replace
InitCommonControls
ImageList_ReplaceIcon
ImageList_Remove
ImageList_DrawIndirect
ImageList_GetIconSize
ImageList_Remove
ImageList_GetImageRect
ImageList_DragShowNolock
ImageList_Copy
ImageList_DragMove
ImageList_GetIcon
ImageList_Replace
ImageList_Draw
ImageList_AddIcon
ImageList_BeginDrag
ImageList_GetImageInfo
InitCommonControls
ImageList_EndDrag
ImageList_DragEnter
ImageList_ReplaceIcon
ImageList_DrawEx
ImageList_LoadImageW

advapi32

RegLoadKeyA
RegQueryInfoKeyA
RegReplaceKeyW
RegEnumKeyA
RegDeleteValueA
RegCreateKeyExW
RegQueryValueExA
RegGetKeySecurity
RegQueryValueA
RegEnumKeyExA
RegOpenKeyW
RegCreateKeyW
RegEnumKeyW
RegDeleteKeyA
RegDeleteKeyW
RegQueryValueW
RegOpenKeyExA
RegDeleteKeyW
RegEnumKeyW
RegOpenKeyExA
RegQueryValueA
RegOpenKeyA
RegEnumKeyA
RegCreateKeyExW
RegGetKeySecurity
RegQueryValueExA
RegDeleteKeyA
RegLoadKeyW
RegDeleteValueA
RegEnumKeyExA
RegOpenKeyW
RegQueryInfoKeyA
RegReplaceKeyA
RegQueryInfoKeyW
RegQueryValueExW
RegDeleteValueW
RegDeleteKeyA
RegOpenKeyA
RegEnumKeyA
RegQueryValueExW
RegLoadKeyW
RegOpenKeyExA
RegQueryInfoKeyA
RegReplaceKeyW
RegDeleteValueA
RegEnumKeyExA
RegReplaceKeyA
RegFlushKey
RegQueryValueW
RegLoadKeyA
RegCreateKeyExW
RegCreateKeyExA
RegQueryValueA
RegFlushKey
RegQueryInfoKeyA
RegEnumKeyA
RegReplaceKeyA
RegOpenKeyW
RegLoadKeyW
RegDeleteKeyA
RegReplaceKeyW
RegQueryValueExA
RegQueryValueExW
RegEnumKeyW
RegGetKeySecurity
RegLoadKeyA
RegCreateKeyExA
RegEnumValueA

kernel32

DeleteFileA
CopyFileExA
OpenFileMappingA
CopyFileW
GetComputerNameA
SetLastError
GetFileSize
DeleteFileW
GetConsoleMode
OpenFile
CreateThread
CopyFileExW
CreateDirectoryA
CopyFileA
ReadConsoleA
GlobalFree
CreateProcessA
DeleteAtom
GetComputerNameA
GetCommandLineA
SetLastError
CopyFileW
GetFileSize
DeleteFileW
ReadFile
ReadConsoleA
GetCPInfo
Sleep
GetStdHandle
GetConsoleMode
CreateProcessA
CreateThread
CopyFileW
CopyFileExW
ReadConsoleA
CreateDirectoryA
DeleteFileW
GetCPInfo
ReadFile
OpenFile
DeleteFileA
GetConsoleMode
GetStdHandle
GetCommandLineA
Sleep
CreateProcessA
GetFileTime
CopyFileA
GlobalFree
FindAtomA

user32

DrawTextA
GetDlgItem
CloseWindow
GetDC
AppendMenuW
CopyRect
GetCursor
CopyImage
InsertMenuA
LoadCursorA
GetMenu
CalcMenuBar
LoadMenuA
IsWindow
DrawIcon
DialogBoxParamW
DialogBoxParamA
CopyIcon
GetWindowTextA
DrawIconEx
CopyRect
GetDC
InsertMenuA
DrawIcon
EndDialog
BlockInput
AlignRects
AppendMenuA
DialogBoxParamA
IsWindow
GetMenu
DialogBoxParamW
DrawIcon
GetWindowTextA
EndDialog
IsMenu
GetDlgItem
InsertMenuA
DrawTextW
DrawIconEx
GetDC
GetFocus
CopyIcon
CopyRect
IsWindow
LoadMenuA
CreateIcon
GetMenu
GetCursor
DialogBoxParamW

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bbs
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 138B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 135B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

15410657d071bd8363adde9d296433bf

Headers

File Characteristics

Imports

comctl32

advapi32

kernel32

user32

Sections

.text Size: 6KB - Virtual size: 5KB

.bbs Size: - Virtual size: 3KB

.data Size: 66KB - Virtual size: 66KB

.idata Size: 5KB - Virtual size: 5KB

.tls Size: 512B - Virtual size: 138B

.rdata Size: 512B - Virtual size: 135B

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 6KB - Virtual size: 5KB

.bbs
Size: - Virtual size: 3KB

.data
Size: 66KB - Virtual size: 66KB

.idata
Size: 5KB - Virtual size: 5KB

.tls
Size: 512B - Virtual size: 138B

.rdata
Size: 512B - Virtual size: 135B

.rsrc
Size: 1024B - Virtual size: 4KB