40ce88f380ce0361a51d996721db1819_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

40ce88f380ce0361a51d996721db1819_JaffaCakes118
Size

499KB
MD5

40ce88f380ce0361a51d996721db1819
SHA1

887fbf25e957381d9c2fd568ed9b719e8c6048f8
SHA256

4f714a9fdad28ee4186ff094206f38d32a02f2d45732d3c0089fc106d3cc4787
SHA512

6eef4dc58835b1c94dd6971dea333809fbf8eeda108c431b8cef10e995e5a86f59f3b44b6360d434cd00ba26c0679951414e0a574399fc180e2f165e2b643ea4
SSDEEP

6144:o8/IsDLQ2kkF9Lcw0IvimsqYsuWDDL9xM5VD2FyqPZKvGVwPTpYiSwqWzAu1jNj7:/qkF9oEamJDDWVMRVW1YEVAqjRd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
40ce88f380ce0361a51d996721db1819_JaffaCakes118

Files

40ce88f380ce0361a51d996721db1819_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f5c700b0eb699b32be4abeae54aab2af

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetClipBox
CancelDC
CreateSolidBrush
BitBlt
RestoreDC
ClearBrushAttributes
GetBrushOrgEx
AddFontMemResourceEx
ExcludeClipRect
GetDCOrgEx
GetBitmapBits
BeginPath
DeleteObject
ClearBitmapAttributes
ExtTextOutA
CopyMetaFileA
GetPixel

comctl32

ImageList_Replace
ImageList_GetImageRect
ImageList_Remove
ImageList_GetIcon
ImageList_Create
ImageList_Destroy
ImageList_ReplaceIcon
ImageList_DrawIndirect
ImageList_LoadImageW
ImageList_AddMasked
ImageList_LoadImage
ImageList_GetIconSize
ImageList_AddIcon
ImageList_DrawEx
ImageList_DragMove
ImageList_EndDrag
ImageList_BeginDrag
ImageList_Merge
ImageList_DragLeave
ImageList_Copy
InitCommonControls

advapi32

RegLoadKeyW
RegCreateKeyExA
RegEnumValueW
RegLoadKeyA
RegReplaceKeyA
RegCreateKeyExW
RegDeleteKeyA
RegQueryValueW
RegQueryValueA
RegOpenKeyExW
RegEnumKeyA
RegOpenKeyExA
RegQueryValueExA
RegDeleteValueA
RegFlushKey
RegReplaceKeyW
RegEnumKeyW
RegQueryInfoKeyW
RegGetKeySecurity
RegOpenKeyA

kernel32

FindFirstFileA
ExitThread
CopyFileW
CopyFileA
CopyFileExW
GetCommandLineA
GetCPInfo
GetComputerNameA
CreateProcessA
DeleteFileW
DeleteAtom
SetLastError
ReadConsoleA
CopyFileExA
FindAtomA
OpenFileMappingA
WriteFile
GetFileSize
Sleep

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 59KB - Virtual size: 167KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 154B

IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f5c700b0eb699b32be4abeae54aab2af

Headers

File Characteristics

Imports

gdi32

comctl32

advapi32

kernel32

Sections

.text Size: 4KB - Virtual size: 4KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 59KB - Virtual size: 167KB

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: - Virtual size: 154B

.text
Size: 4KB - Virtual size: 4KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 59KB - Virtual size: 167KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: - Virtual size: 154B