3a9346f760c9e9f92f57090d27976e20_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3a9346f760c9e9f92f57090d27976e20_JaffaCakes118
Size

50KB
MD5

3a9346f760c9e9f92f57090d27976e20
SHA1

a6d77cc35cb000a4fa466117f45fb67d0507ce15
SHA256

f337d036aaba60313651c43c8f7fb125ae969b4e7beac5831307f886fa10dea3
SHA512

08f60e64e3a5f3f07f841ee54184da736fd9b2359d38c449f40da3a2a2a2c9c06c27d985b9c7967eeb472ff2450aa5a53ef9a074a36e20886c836edc2539f762
SSDEEP

768:3/Ba0tzCOqeRnir9eCRY0J7n87ofu9JWOP8tkGFlByFTpIjfrKuyu9WX:Ps01VnQY0Jj87ofxOP8LFlBYNIjfXlW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3a9346f760c9e9f92f57090d27976e20_JaffaCakes118

Files

3a9346f760c9e9f92f57090d27976e20_JaffaCakes118
.exe windows:4 windows x86 arch:x86

50787897a393c8a60b05d5c8a3aef430

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

user32

DialogBoxParamA
GetFocus
GetCursor
DrawTextW
DrawTextA
CloseWindow
IsWindow
EndDialog
GetDC
LoadCursorA
CopyImage
GetDlgItem
LoadMenuA
GetWindowTextLengthA
DrawIconEx
IsMenu
GetWindowTextA
CreateIcon
CopyRect
DialogBoxParamW
CopyIcon
DrawIcon
InsertMenuA
GetMenu

advapi32

RegSetValueA
RegDeleteKeyA
RegEnumKeyA
RegCreateKeyExW
RegQueryValueExA
RegOpenKeyW
RegEnumKeyW
RegEnumKeyExA
RegCreateKeyW
RegOpenKeyA
RegEnumKeyExW
RegDeleteValueA
RegQueryValueExW
RegSetValueW
RegEnumValueA
RegQueryValueA
RegOpenKeyExA
RegCreateKeyExA
RegOpenKeyExW
RegDeleteKeyW
RegQueryValueW
RegCreateKeyA
RegEnumValueW

comctl32

ImageList_Draw
ImageList_Add
ImageList_DragEnter
ImageList_Create
CreateStatusWindow
CreateToolbar
ImageList_LoadImageA
ImageList_EndDrag
CreateMappedBitmap
MenuHelp
ImageList_Destroy
ImageList_GetIcon
ImageList_GetIconSize
InitCommonControls
ImageList_DrawEx
ImageList_LoadImageW
ImageList_Copy

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bbs
Size: - Virtual size: 57KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: - Virtual size: 263B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 516B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

50787897a393c8a60b05d5c8a3aef430

Headers

File Characteristics

Imports

user32

advapi32

comctl32

Sections

.text Size: 10KB - Virtual size: 10KB

.data Size: 34KB - Virtual size: 34KB

.bbs Size: - Virtual size: 57KB

.idata Size: 2KB - Virtual size: 2KB

.tls Size: - Virtual size: 263B

.rdata Size: 512B - Virtual size: 1KB

.rsrc Size: 1024B - Virtual size: 516B

.text
Size: 10KB - Virtual size: 10KB

.data
Size: 34KB - Virtual size: 34KB

.bbs
Size: - Virtual size: 57KB

.idata
Size: 2KB - Virtual size: 2KB

.tls
Size: - Virtual size: 263B

.rdata
Size: 512B - Virtual size: 1KB

.rsrc
Size: 1024B - Virtual size: 516B