3592cbc749a83ad700b8e5b1a11671b3_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3592cbc749a83ad700b8e5b1a11671b3_JaffaCakes118
Size

80KB
MD5

3592cbc749a83ad700b8e5b1a11671b3
SHA1

6f9deed738e6377165de61d67708bbf00c273418
SHA256

1d1804cfbe7caeb381cbbf44716ff2ee20b89fac14210d1664b540fb45ccc937
SHA512

2c7123ea0edf7846eef08efa154234a5559f3f9dfbb80bf46bf55e19bc3154a0632f39bc86bc2ac78544aa97df01622daba5740fac9211052c515d15ef418d15
SSDEEP

1536:hTzd+LzdMrCk08YcjzLq01N80YDyuVu7XBu:xd+LBMmnhcd801uVu7o

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3592cbc749a83ad700b8e5b1a11671b3_JaffaCakes118

Files

3592cbc749a83ad700b8e5b1a11671b3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

df3b66af0ce0ffb3699dc43364127d60

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetBitmapBits
CancelDC
CopyMetaFileA
ClearBitmapAttributes
DeleteObject
RestoreDC
AddFontResourceExW
ExtTextOutA
AddFontResourceW
AbortPath
AddFontResourceTracking
DeleteDC
BitBlt
AddFontResourceTracking
AddFontMemResourceEx
ClearBrushAttributes
DeleteObject
BitBlt
GetDCOrgEx
AbortPath
ExcludeClipRect
ExtTextOutA
GetBitmapBits
CopyMetaFileA
CreateSolidBrush
AddFontResourceW
GetClipBox

user32

CreateIcon
CalcMenuBar
CloseWindow
LoadCursorA
GetFocus
CopyImage
EndDialog
BlockInput
InsertMenuA
IsWindow
GetMenu
AppendMenuW
CopyIcon
AlignRects
GetFocus
CopyImage
CopyRect
DrawTextW
GetWindowTextA
LoadCursorA
DrawIconEx
CloseWindow
IsMenu
DialogBoxParamW
DrawTextA
InsertMenuA
LoadMenuA
LoadCursorA
CopyImage
CalcMenuBar
BlockInput
GetDC
GetWindowTextA
DialogBoxParamW
AppendMenuA
DrawTextA
IsMenu
AlignRects
DrawIconEx
GetDlgItem
CopyImage
DialogBoxParamA
GetFocus
IsMenu
CloseWindow
CopyIcon
DrawIconEx
GetDC
AppendMenuA
GetMenu
GetWindowTextA
GetWindowTextLengthA
DrawTextW
LoadCursorA
EndDialog

advapi32

RegEnumValueW
RegFlushKey
RegQueryInfoKeyW
RegLoadKeyW
RegCreateKeyW
RegEnumKeyA
RegOpenKeyA
RegDeleteKeyA
RegQueryValueExA
RegEnumKeyExA
RegQueryValueW
RegEnumKeyW
RegGetKeySecurity
RegCreateKeyExW
RegDeleteValueA
RegReplaceKeyW
RegReplaceKeyA
RegQueryInfoKeyA

kernel32

GetFileSize
CopyFileW
WriteFile
DeleteAtom
SetLastError
GetFileTime
GetCPInfo
OpenFile
GetComputerNameA
CreateDirectoryA
GetConsoleMode

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

df3b66af0ce0ffb3699dc43364127d60

Headers

File Characteristics

Imports

gdi32

user32

advapi32

kernel32

Sections

.text Size: 8KB - Virtual size: 4KB

.data Size: 48KB - Virtual size: 44KB

.tls Size: 4KB - Virtual size: 4KB

.rdata Size: 8KB - Virtual size: 5KB

.idata Size: 4KB - Virtual size: 3KB

.rsrc Size: 4KB - Virtual size: 28KB

.text
Size: 8KB - Virtual size: 4KB

.data
Size: 48KB - Virtual size: 44KB

.tls
Size: 4KB - Virtual size: 4KB

.rdata
Size: 8KB - Virtual size: 5KB

.idata
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 4KB - Virtual size: 28KB