3b8d8ea0d9f667c06449b9d6388b6c16_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3b8d8ea0d9f667c06449b9d6388b6c16_JaffaCakes118
Size

83KB
MD5

3b8d8ea0d9f667c06449b9d6388b6c16
SHA1

c43cbf4d3528c77c41a33ccb99bf0754a87480aa
SHA256

a0d65e3d88903a8465c986306648fdd4b72b139f02cec4e3e6bd89568f34844b
SHA512

bda848445fa16ddd8a89cb70953e384a96481d4352d384b3f65806820b10c82a918fce3e2b1e9c39aeea2ee065858477a6c0e33c9ce7206512d36808b0a2387b
SSDEEP

1536:0+5DoJOwJ6Lju7qRk8OV4INH7IJnY/fll9smbDJ:0kDoJdJ6Li7q/OPNcn0ftsmbt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3b8d8ea0d9f667c06449b9d6388b6c16_JaffaCakes118

Files

3b8d8ea0d9f667c06449b9d6388b6c16_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4910025b5b437b5b847de71701b36350

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDlgItem
GetCursor
GetMenu
LoadMenuA
DrawIconEx
DialogBoxParamW
GetWindowTextLengthA
GetWindowTextA
BlockInput
CopyRect
IsMenu
DrawIcon
CalcMenuBar
LoadCursorA
GetFocus
AppendMenuA
CloseWindow
CopyImage
IsWindow
DrawIcon
GetCursor
CreateIcon
GetDC
AppendMenuA
GetWindowTextA
InsertMenuA
CopyRect
CloseWindow
DrawTextA
IsMenu
CalcMenuBar
CopyImage
DrawIconEx
DialogBoxParamA
GetDlgItem
GetMenu
BlockInput
IsWindow
DialogBoxParamW

advapi32

RegGetKeySecurity
RegCreateKeyExA
RegFlushKey
RegDeleteValueW
RegCreateKeyExW
RegEnumKeyExA
RegEnumKeyW
RegEnumValueW
RegQueryInfoKeyW
RegQueryValueExW
RegReplaceKeyA
RegOpenKeyExA
RegReplaceKeyW
RegOpenKeyW
RegOpenKeyA
RegQueryInfoKeyA
RegQueryValueExA
RegEnumKeyExW
RegQueryValueA

kernel32

GlobalFree
HeapFree
GetDateFormatA
lstrlenA
lstrcpyA
HeapAlloc
GetModuleHandleA
GetFileType
FreeLibrary
GetFileAttributesA
GetCPInfo
GetCommandLineA
GetLocalTime
GetStringTypeW
lstrcmpA
GetModuleFileNameA
GetStdHandle
CloseHandle
SetLastError

comctl32

ImageList_Merge
ImageList_GetDragImage
InitCommonControls
ImageList_DragShowNolock
ImageList_Draw
ImageList_Destroy
ImageList_Replace
ImageList_Copy
ImageList_DragEnter
ImageList_DragMove
ImageList_Create
ImageList_GetImageCount
ImageList_GetIcon
ImageList_ReplaceIcon
ImageList_GetIconSize
ImageList_DragLeave
ImageList_LoadImage
ImageList_GetImageInfo

Sections

.ScybJq
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.FelvTg
Size: 59KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.fBIA
Size: 2KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.BdcREU
Size: - Virtual size: 2KB

IMAGE_SCN_MEM_READ

.BUyqy
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4910025b5b437b5b847de71701b36350

Headers

File Characteristics

Imports

user32

advapi32

kernel32

comctl32

Sections

.ScybJq Size: 15KB - Virtual size: 15KB

.FelvTg Size: 59KB - Virtual size: 59KB

.fBIA Size: 2KB - Virtual size: 113KB

.BdcREU Size: - Virtual size: 2KB

.BUyqy Size: 2KB - Virtual size: 1KB

.ScybJq
Size: 15KB - Virtual size: 15KB

.FelvTg
Size: 59KB - Virtual size: 59KB

.fBIA
Size: 2KB - Virtual size: 113KB

.BdcREU
Size: - Virtual size: 2KB

.BUyqy
Size: 2KB - Virtual size: 1KB