314f9c53ab7aa89fa8a102f137ed80a2_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

314f9c53ab7aa89fa8a102f137ed80a2_JaffaCakes118
Size

29KB
MD5

314f9c53ab7aa89fa8a102f137ed80a2
SHA1

c861464772eeadf86f737d8220a6935c501ca63c
SHA256

f03293017b0a69a6b183fa1f87aa3ca6e3815e84837205ca855e633d11849d6b
SHA512

8429744f3f76cf8729a423ff60765fb77053c10f75f484667f5d4b0e1205b0694f77538026bede0f5f6ff70199d1f5483c5f8b84bd20cbcbc5e7ca6af5427acb
SSDEEP

384:Q9pzXVt0FaoEsh9RxstI9hWXF8bRsEynoTMNRvgrdL4vmgdyJLWbZTDnYxAqu8:S7Loj1/+I9G89p8oTMN6LKmuKOZT7Yp7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
314f9c53ab7aa89fa8a102f137ed80a2_JaffaCakes118

Files

314f9c53ab7aa89fa8a102f137ed80a2_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6f156baf7051c1fb8a34e0bc04950873

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegQueryValueExW
RegDeleteKeyA
RegEnumValueA
RegQueryValueA
RegGetKeySecurity
RegOpenKeyExA
RegReplaceKeyW
RegLoadKeyA
RegQueryInfoKeyW
RegEnumKeyExW
RegEnumKeyW
RegCreateKeyExW
RegQueryValueW
RegCreateKeyW
RegOpenKeyW
RegCreateKeyW
RegEnumKeyExA
RegGetKeySecurity
RegDeleteKeyA
RegQueryInfoKeyW
RegDeleteValueA
RegEnumKeyA
RegEnumValueW
RegQueryValueW
RegEnumValueA
RegEnumKeyExW
RegQueryValueExW
RegCreateKeyExA
RegEnumKeyW
RegCreateKeyExW
RegQueryValueA
RegQueryValueExA
RegOpenKeyA
RegLoadKeyA
RegLoadKeyW
RegDeleteKeyW
RegEnumKeyW
RegQueryInfoKeyA
RegCreateKeyExW
RegReplaceKeyW
RegOpenKeyW
RegQueryInfoKeyW
RegQueryValueA
RegDeleteKeyA
RegDeleteValueW
RegQueryValueExA
RegDeleteKeyW
RegFlushKey
RegCreateKeyW
RegLoadKeyW
RegDeleteValueA
RegEnumValueW
RegOpenKeyA
RegEnumValueA
RegLoadKeyA
RegQueryValueW
RegEnumKeyA
RegReplaceKeyA
RegEnumKeyExA
RegQueryValueExW

user32

InsertMenuA
CreateIcon
CopyImage
DrawIcon
IsWindow
AppendMenuW
GetWindowTextLengthA
EndDialog
AppendMenuA
GetDlgItem
CloseWindow
DrawTextA
DialogBoxParamA
GetMenu
GetDC
DialogBoxParamW
DrawTextW
CalcMenuBar
AlignRects
DrawIconEx
CopyIcon
LoadMenuA
GetFocus
LoadCursorA
DrawTextW
GetWindowTextLengthA
CalcMenuBar
CloseWindow
InsertMenuA
CreateIcon
CopyImage
GetDC
DrawTextA
GetWindowTextA
DrawIconEx
GetFocus
LoadMenuA
IsMenu
BlockInput
AppendMenuA
DialogBoxParamA
AppendMenuW
AlignRects
IsWindow
DialogBoxParamW
EndDialog
LoadCursorA
GetCursor

gdi32

AddFontResourceW
AddFontResourceExW
DeleteObject
AbortPath
GetBrushOrgEx
GetCurrentPositionEx
ExtTextOutA
CloseMetaFile
AddFontResourceA
CancelDC
AddFontMemResourceEx
CopyMetaFileA
BeginPath
GetDCOrgEx
DeleteDC
ClearBrushAttributes
CloseFigure
GetPixel
GetBitmapBits
CreateSolidBrush
AddFontResourceTracking

comctl32

ImageList_Merge
ImageList_Read
ImageList_Replace
ImageList_AddMasked
ImageList_Copy
ImageList_DragLeave
ImageList_Remove
ImageList_BeginDrag
InitCommonControls
ImageList_GetIconSize
ImageList_AddIcon
ImageList_LoadImageW
ImageList_Create
ImageList_DragMove
ImageList_DragEnter
ImageList_DrawIndirect
ImageList_Destroy
ImageList_LoadImageA
ImageList_GetImageCount
ImageList_DragMove
ImageList_GetIconSize
ImageList_AddMasked
ImageList_GetIcon
ImageList_GetDragImage
ImageList_LoadImage
ImageList_GetImageInfo
ImageList_Read
ImageList_Destroy
ImageList_Remove
ImageList_AddIcon
ImageList_DrawEx
ImageList_Copy
ImageList_DrawIndirect
ImageList_BeginDrag
ImageList_Replace
ImageList_DragLeave
ImageList_Create
ImageList_Draw

kernel32

DeleteAtom
CopyFileW
GetStdHandle
CreateDirectoryA
GetFileSize
GetLastError
CopyFileExA
WriteFile
FindFirstFileA
ReadConsoleA
Sleep
ReadFile
GetCommandLineA
DeleteFileW
ExitThread
GetComputerNameA
SetLastError
CreateProcessA
DeleteFileA
GlobalFree
GetCPInfo
CopyFileExW
GetFileTime

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6f156baf7051c1fb8a34e0bc04950873

Headers

File Characteristics

Imports

advapi32

user32

gdi32

comctl32

kernel32

Sections

.text Size: 2KB - Virtual size: 2KB

.rdata Size: 5KB - Virtual size: 5KB

.data Size: 20KB - Virtual size: 38KB

.text
Size: 2KB - Virtual size: 2KB

.rdata
Size: 5KB - Virtual size: 5KB

.data
Size: 20KB - Virtual size: 38KB