4562a9eb399663f702e1580a7e38ba56_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

4562a9eb399663f702e1580a7e38ba56_JaffaCakes118
Size

114KB
MD5

4562a9eb399663f702e1580a7e38ba56
SHA1

402822b78c068fb7a55c8a62f2cab4f4c3c117c0
SHA256

321d4d6dd12da54b48a950c42be9813eb989ce334c3205fad440b9a233985072
SHA512

bdf151e466fd2ba90e1b497806de22e24c02a854dae220db3c06b8ebda6ed463a809781b5e7119a796c81a6dc6b474330cadd6b533c5ae60fa08959e4df4beaa
SSDEEP

1536:QZfmsLubxPy8YJoGtuDjCDphq6TWxojq3WfLqrqUczW:4f1ubV9YiGYDjCD3Aotcq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4562a9eb399663f702e1580a7e38ba56_JaffaCakes118

Files

4562a9eb399663f702e1580a7e38ba56_JaffaCakes118
.exe windows:4 windows x86 arch:x86

abaac0cf8343afcc5f5382f3f846daab

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

CreateThread
GetLastError
GetStdHandle
ReadConsoleA
ReadFile
GetConsoleMode
GetCommandLineA
CopyFileExW
GetCPInfo
Sleep
FindFirstFileA
CopyFileW
GetFileTime
ExitThread
OpenFile
FindAtomA
OpenFile
CopyFileExA
GetLastError
FindAtomA
GetConsoleMode
CreateDirectoryA
FindFirstFileA
GlobalFree
CopyFileA
WriteFile
Sleep
GetFileTime
OpenFileMappingA
CreateProcessA
ReadConsoleA
GetStdHandle
ReadFile
CreateThread
GetComputerNameA

comctl32

ImageList_GetIcon
ImageList_LoadImage
ImageList_DragShowNolock
ImageList_DragMove
ImageList_Remove
ImageList_ReplaceIcon
ImageList_GetImageRect
ImageList_DrawIndirect
InitCommonControls
ImageList_Copy
ImageList_LoadImageW
ImageList_Merge
ImageList_DrawEx
ImageList_Create
ImageList_LoadImage
ImageList_Read
ImageList_DragEnter
ImageList_Merge
ImageList_Create
ImageList_Replace
ImageList_DragShowNolock
ImageList_GetImageCount
ImageList_GetDragImage
InitCommonControls
ImageList_AddIcon
InitCommonControls
ImageList_DrawIndirect
ImageList_GetImageCount
ImageList_Copy
ImageList_LoadImageA
ImageList_DragShowNolock
ImageList_LoadImage
ImageList_DrawEx
ImageList_GetDragImage
ImageList_Destroy
ImageList_DragEnter
InitCommonControls
ImageList_GetImageInfo
ImageList_BeginDrag
ImageList_Merge
ImageList_Remove
ImageList_Destroy
ImageList_EndDrag
ImageList_DrawEx
ImageList_AddMasked
ImageList_Copy
ImageList_DragLeave
ImageList_GetDragImage

user32

AlignRects
GetDlgItem
GetFocus
CloseWindow
LoadMenuA
GetCursor
BlockInput
GetWindowTextLengthA
AppendMenuW
CalcMenuBar
DialogBoxParamW
DrawTextA
IsWindow
DrawTextW
CopyRect
CopyIcon
GetMenu
DialogBoxParamA
CalcMenuBar
BlockInput
IsMenu
LoadMenuA
DrawIcon
CopyImage
AppendMenuW
GetFocus
GetWindowTextA
DrawTextW
CalcMenuBar
GetMenu
LoadCursorA
IsMenu
AppendMenuA
EndDialog
GetWindowTextLengthA
GetDlgItem
DrawTextW
AlignRects
CreateIcon
DialogBoxParamA
BlockInput
CopyIcon
CopyRect
CloseWindow
DrawTextA
AppendMenuW
DialogBoxParamW

advapi32

RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegQueryValueA
RegQueryValueExW
RegEnumKeyA
RegEnumKeyW
RegEnumValueA
RegQueryValueW
RegDeleteValueA
RegEnumValueW
RegOpenKeyExW
RegQueryValueExA
RegLoadKeyW
RegLoadKeyA
RegOpenKeyA
RegDeleteKeyA
RegEnumKeyExA
RegReplaceKeyW

gdi32

DeleteObject
RestoreDC
AddFontResourceExW
GetClipBox
BitBlt
CloseMetaFile
AddFontResourceW
GetDCOrgEx
ClearBrushAttributes
AddFontResourceTracking
ExtTextOutA
AddFontMemResourceEx
CancelDC
AddFontResourceExA
ClearBitmapAttributes
AbortPath
AddFontResourceTracking
GetClipBox
DeleteDC
SetTextColor
GetDCOrgEx
CancelDC
AddFontMemResourceEx
CloseFigure
AddFontResourceExW
GetPixel
ClearBrushAttributes
ExtTextOutA
RestoreDC
GetCurrentPositionEx
AddFontResourceExA
ExcludeClipRect
DeleteObject

Sections

.text
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bbs
Size: - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: - Virtual size: 59B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 168B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 516B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

abaac0cf8343afcc5f5382f3f846daab

Headers

File Characteristics

Imports

kernel32

comctl32

user32

advapi32

gdi32

Sections

.text Size: 25KB - Virtual size: 24KB

.data Size: 80KB - Virtual size: 79KB

.bbs Size: - Virtual size: 86KB

.idata Size: 6KB - Virtual size: 6KB

.tls Size: - Virtual size: 59B

.rdata Size: 512B - Virtual size: 168B

.rsrc Size: 1024B - Virtual size: 516B

.text
Size: 25KB - Virtual size: 24KB

.data
Size: 80KB - Virtual size: 79KB

.bbs
Size: - Virtual size: 86KB

.idata
Size: 6KB - Virtual size: 6KB

.tls
Size: - Virtual size: 59B

.rdata
Size: 512B - Virtual size: 168B

.rsrc
Size: 1024B - Virtual size: 516B