3a2ab8188fa187ef729828ea222f7f6b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3a2ab8188fa187ef729828ea222f7f6b_JaffaCakes118
Size

80KB
MD5

3a2ab8188fa187ef729828ea222f7f6b
SHA1

acaba000697171487453e68acd0b5f3f91277661
SHA256

b125a3006a7fae759264c23998af89cfb02acbafd367914df22940ed73911730
SHA512

c0fad95a45e742db373b82116e81c198a830994299497ecd75d5268fc83ed18fb1169e68b94fa89b8baccadd480573a6ae283a5256dcd959becb6cf42120408e
SSDEEP

768:kciiM8Nm9ClNT9cQE2O40jbC5Kg66g+pGsahg2Oadpq/Fra/4nYNK/NH:RiZSBcWOi5Kg6jsWOq0kAnYE/p

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3a2ab8188fa187ef729828ea222f7f6b_JaffaCakes118

Files

3a2ab8188fa187ef729828ea222f7f6b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6d1d685fbd256349a49fac494e6f1207

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CreateSolidBrush
AddFontResourceTracking
RestoreDC
BeginPath
DeleteObject
AddFontResourceExA
GetPixel
AddFontResourceA
ClearBrushAttributes
ClearBitmapAttributes
GetDCOrgEx
ExcludeClipRect
AddFontResourceA
AddFontMemResourceEx
AbortPath
GetDCOrgEx
CancelDC
GetPixel
GetBitmapBits
AddFontResourceExA
AddFontResourceTracking
GetClipBox
ClearBrushAttributes
ClearBitmapAttributes
GetPixel
BitBlt
CloseFigure
GetCurrentPositionEx

kernel32

CopyFileExA
OpenFileMappingA
CreateProcessA
GetCPInfo
SetLastError
GetStdHandle
GetCommandLineA
GetLastError
CopyFileW
WriteFile
OpenFile
CopyFileExW
OpenFile
ExitThread
CreateThread
CopyFileExW
FindFirstFileA
ReadConsoleA
DeleteAtom
WriteFile
CopyFileW
GetLastError
GetComputerNameA
Sleep
CopyFileA
FindFirstFileA
GetCommandLineA
SetLastError
GetFileSize
GetFileTime
ReadFile
FindAtomA
DeleteFileW
GetComputerNameA
Sleep
CopyFileW
CreateProcessA
GetStdHandle

advapi32

RegFlushKey
RegEnumKeyExA
RegDeleteValueW
RegGetKeySecurity
RegQueryInfoKeyW
RegOpenKeyExW
RegDeleteValueA
RegLoadKeyW
RegEnumValueA
RegDeleteKeyW
RegQueryInfoKeyA
RegEnumKeyW
RegQueryValueExA
RegOpenKeyExA
RegCreateKeyExA
RegCreateKeyExW
RegQueryValueExW
RegQueryValueA
RegDeleteKeyW
RegDeleteKeyA
RegEnumKeyW
RegQueryInfoKeyA
RegEnumKeyExW
RegFlushKey
RegQueryValueExA
RegCreateKeyExA
RegQueryValueW
RegOpenKeyExA
RegCreateKeyExW
RegQueryInfoKeyW
RegOpenKeyA
RegOpenKeyW
RegCreateKeyW
RegDeleteValueW
RegEnumKeyExW
RegQueryInfoKeyA
RegDeleteKeyA
RegEnumKeyExA
RegOpenKeyExA
RegDeleteKeyW
RegQueryValueW
RegQueryValueExA
RegQueryValueExW
RegEnumValueA

Sections

.text
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6d1d685fbd256349a49fac494e6f1207

Headers

File Characteristics

Imports

gdi32

kernel32

advapi32

Sections

.text Size: 8KB - Virtual size: 6KB

.data Size: 48KB - Virtual size: 46KB

.tls Size: 4KB - Virtual size: 4KB

.rdata Size: 8KB - Virtual size: 4KB

.idata Size: 4KB - Virtual size: 3KB

.rsrc Size: 4KB - Virtual size: 25KB

.text
Size: 8KB - Virtual size: 6KB

.data
Size: 48KB - Virtual size: 46KB

.tls
Size: 4KB - Virtual size: 4KB

.rdata
Size: 8KB - Virtual size: 4KB

.idata
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 4KB - Virtual size: 25KB