3d76c0da48eaea559aaa0dd91e1e8a55_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3d76c0da48eaea559aaa0dd91e1e8a55_JaffaCakes118
Size

456KB
MD5

3d76c0da48eaea559aaa0dd91e1e8a55
SHA1

cadef50ce60654715742bde1288390473301b575
SHA256

33b551d1e3e3248a5e2008b1c217a7ab783826d026d60df3851fbcb3848d0534
SHA512

7c89d299023a855a850c79a9419fb4b24765231af294169a7364ac20b308216af658c467dcaaa34e74d6a434a0ca6dc3d673ae9caba34bb14bfaf8b0a70d0586
SSDEEP

12288:dN/QTvyLwP/q2A4BWGJKuiNR3COgNUXmev:bQLNP/jHRiNQBk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3d76c0da48eaea559aaa0dd91e1e8a55_JaffaCakes118

Files

3d76c0da48eaea559aaa0dd91e1e8a55_JaffaCakes118
.exe windows:4 windows x86 arch:x86

140757bacbd656abf9543e6fead5b7ca

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CopyFileExA
ReadFile
DeleteAtom
CreateThread
CopyFileA
FindAtomA
Sleep
FindFirstFileA
CopyFileExW
ReadConsoleA
ExitThread
DeleteFileA
WriteFile
CreateDirectoryA
GetCommandLineA
OpenFileMappingA
CopyFileW

advapi32

RegLoadKeyA
RegQueryValueW
RegCreateKeyW
RegReplaceKeyW
RegOpenKeyExW
RegQueryValueExA
RegEnumKeyW
RegFlushKey
RegEnumValueA
RegQueryValueA
RegDeleteKeyW
RegOpenKeyExA
RegReplaceKeyA
RegLoadKeyW
RegQueryInfoKeyA
RegDeleteValueA
RegQueryValueExW
RegEnumKeyA
RegCreateKeyExW
RegEnumKeyExA
RegOpenKeyW
RegEnumValueW
RegCreateKeyExA
RegQueryValueA
RegReplaceKeyW
RegEnumKeyExA
RegOpenKeyExA
RegDeleteValueW
RegQueryValueW
RegFlushKey
RegDeleteKeyW
RegQueryValueExW
RegLoadKeyW
RegEnumKeyA
RegDeleteValueA
RegEnumKeyExW
RegEnumKeyW
RegDeleteKeyA
RegDeleteKeyW
RegDeleteKeyA
RegLoadKeyA
RegEnumKeyExA
RegEnumValueW
RegOpenKeyExW
RegLoadKeyW
RegQueryInfoKeyW
RegCreateKeyExW
RegEnumKeyW
RegReplaceKeyA
RegFlushKey
RegCreateKeyExA
RegOpenKeyW
RegEnumValueA
RegDeleteValueA
RegQueryInfoKeyA
RegDeleteValueW
RegOpenKeyExA
RegQueryValueExW
RegReplaceKeyW
RegQueryValueExA
RegEnumKeyExW
RegOpenKeyA
RegDeleteValueA
RegEnumValueW
RegDeleteKeyW
RegOpenKeyW
RegReplaceKeyW
RegOpenKeyExA
RegOpenKeyExW
RegCreateKeyExW
RegEnumKeyA
RegQueryValueW
RegEnumKeyExW
RegLoadKeyW
RegReplaceKeyA
RegQueryValueExW
RegQueryInfoKeyW

user32

CopyIcon
IsMenu
DrawTextA
InsertMenuA
DrawIcon
CalcMenuBar
GetWindowTextLengthA
LoadCursorA
GetCursor
AppendMenuW
EndDialog
AppendMenuA
IsWindow
DialogBoxParamA
BlockInput

gdi32

BitBlt
ClearBitmapAttributes
AbortPath
AddFontResourceA
CreateSolidBrush
GetDCOrgEx
BeginPath
ClearBrushAttributes
DeleteDC
ExcludeClipRect
AddFontResourceExA
AddFontResourceW
CopyMetaFileA
DeleteObject
GetCurrentPositionEx
GetPixel
CancelDC
GetDCOrgEx
DeleteObject
GetPixel
CloseMetaFile
GetBitmapBits
ClearBitmapAttributes
AddFontResourceW
BitBlt
CreateSolidBrush
GetBrushOrgEx
DeleteDC
ExtTextOutA
GetClipBox
BeginPath
CloseFigure
ClearBrushAttributes
RestoreDC
DeleteObject
BitBlt
ClearBitmapAttributes
AddFontResourceTracking
CancelDC
AddFontResourceA
ExtTextOutA
AddFontResourceExW
GetCurrentPositionEx
ExcludeClipRect
CopyMetaFileA
SetTextColor
GetPixel
DeleteDC
GetClipBox
AddFontMemResourceEx
GetBitmapBits
ClearBrushAttributes
AddFontResourceW

comctl32

ImageList_DrawEx
ImageList_Create
ImageList_Destroy
ImageList_Remove
ImageList_LoadImage
ImageList_GetImageCount
ImageList_AddMasked
ImageList_GetImageRect
ImageList_GetImageInfo
ImageList_GetIconSize
ImageList_DragMove
ImageList_DragLeave
ImageList_AddIcon
ImageList_DragEnter
InitCommonControls
ImageList_Replace
ImageList_LoadImageA

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 55KB - Virtual size: 172KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 814B

IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

140757bacbd656abf9543e6fead5b7ca

Headers

File Characteristics

Imports

kernel32

advapi32

user32

gdi32

comctl32

Sections

.text Size: 4KB - Virtual size: 3KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 55KB - Virtual size: 172KB

.rsrc Size: 1024B - Virtual size: 4KB

.reloc Size: - Virtual size: 814B

.text
Size: 4KB - Virtual size: 3KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 55KB - Virtual size: 172KB

.rsrc
Size: 1024B - Virtual size: 4KB

.reloc
Size: - Virtual size: 814B