2c51cf714c67145583ebb7e169be9ae7_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2c51cf714c67145583ebb7e169be9ae7_JaffaCakes118
Size

400KB
MD5

2c51cf714c67145583ebb7e169be9ae7
SHA1

1738ee3b485b0b295697874382e4fa07c2ec6399
SHA256

aa5139f259ad00b05a5fa1dbcf359a5207c0e8c2dc9024f6df6ca8556db8d1d8
SHA512

227ede87d60421f78a97c315f576d7653c84bbab2e9b15c8d7834e4515789e933b7a5458f3e86de8d67b4d142a5137e8625c7ec4f0be60c36db33cf3c651e7e8
SSDEEP

1536:PwnlnEzPCk4RskoyYOFSlKOTYuqcgC9+dNPckiKP9B6Z:IlnEzD4rskTOTKZtP9E

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2c51cf714c67145583ebb7e169be9ae7_JaffaCakes118

Files

2c51cf714c67145583ebb7e169be9ae7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

24251ec56d88f6222bc4382ed76e8354

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegQueryValueExW
RegOpenKeyExW
RegDeleteKeyA
RegGetKeySecurity
RegEnumKeyExA
RegLoadKeyA
RegEnumKeyExW
RegCreateKeyExA
RegFlushKey
RegQueryValueA
RegDeleteValueW
RegQueryInfoKeyW
RegEnumValueW
RegReplaceKeyW
RegEnumValueA
RegCreateKeyExW
RegDeleteKeyW
RegDeleteKeyA
RegQueryInfoKeyW
RegReplaceKeyW
RegOpenKeyW
RegCreateKeyExW
RegQueryInfoKeyA
RegEnumValueW
RegEnumKeyA
RegEnumKeyExA
RegCreateKeyExA
RegQueryValueExA
RegLoadKeyA
RegEnumKeyW
RegReplaceKeyA
RegOpenKeyExA
RegQueryValueW
RegQueryValueA
RegOpenKeyA
RegDeleteValueW
RegReplaceKeyW
RegCreateKeyA
RegEnumValueW
RegEnumKeyW
RegDeleteValueA
RegOpenKeyExA
RegCreateKeyW
RegOpenKeyA
RegCreateKeyExW
RegQueryValueA
RegEnumValueA
RegQueryValueW
RegLoadKeyW
RegQueryValueExA
RegOpenKeyW

kernel32

CopyFileExW
OpenFile
FreeResource
CreateDirectoryA
DeleteAtom
FindAtomA
GetLocalTime
ExitThread
GetStdHandle
FatalExit
GetLastError
CopyFileExA
DeleteAtom
ReadFile
FindClose
FlushFileBuffers
DeleteFileW
ExitProcess
GetFileTime
GetLocalTime
DeleteFileA
GetCPInfo
FreeResource
FindAtomA
GetLastError
CopyFileA
GetFileType
CreateDirectoryA
OpenFileMappingA
GetCommandLineA
GetFileType
FlushFileBuffers
DeleteFileW
FindAtomA
DeleteFileA
FatalExit
AddAtomA
GetLastError
ReadFile
CreateDirectoryA
GlobalFree

user32

AlignRects
EndDialog
CreateIcon
GetCursor
GetDC
CopyRect
InsertMenuA
GetWindowTextA
CloseWindow
CalcMenuBar
DialogBoxParamA
CopyImage
LoadCursorA
LoadMenuA
DrawTextA
CopyIcon
GetWindowTextLengthA
AppendMenuW
DrawTextA
GetMenu
IsWindow
CopyIcon
AppendMenuA
CreateIcon
CloseWindow
CopyImage
BlockInput
InsertMenuA
GetCursor
GetWindowTextLengthA
DrawIconEx
GetFocus
LoadMenuA
GetWindowTextA
AlignRects

Sections

.text
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.DATA
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 343KB - Virtual size: 343KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 843B - Virtual size: 843B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

24251ec56d88f6222bc4382ed76e8354

Headers

File Characteristics

Imports

advapi32

kernel32

user32

Sections

.text Size: 27KB - Virtual size: 27KB

.DATA Size: 8KB - Virtual size: 8KB

.bss Size: 343KB - Virtual size: 343KB

.idata Size: 3KB - Virtual size: 3KB

.rsrc Size: 1KB - Virtual size: 1KB

.rsrc Size: 843B - Virtual size: 843B

.text
Size: 27KB - Virtual size: 27KB

.DATA
Size: 8KB - Virtual size: 8KB

.bss
Size: 343KB - Virtual size: 343KB

.idata
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 843B - Virtual size: 843B