47adebe919c5a6539109acaf24785746_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

47adebe919c5a6539109acaf24785746_JaffaCakes118
Size

80KB
MD5

47adebe919c5a6539109acaf24785746
SHA1

4b47a86dd0059128b84c9e993126b750e6d3b2f4
SHA256

9ff3bf305adb8b5df83214b8b9c7bc49abb06f16f7eab18978a6b1976e8fc0c7
SHA512

db7e2ff9141afcf54f6e5f5ad00168d47434e6863129e0e16ca327c1481b728148a650115eb568530cfc3a9865751202ab0178afb9308325b5de1a40f266b6fe
SSDEEP

1536:frWPWV4OvLjjL67Ue+UJE5ENnvMM/qJ5scT94iP:DWPWXDjj2oiJE52H/wX9bP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
47adebe919c5a6539109acaf24785746_JaffaCakes118

Files

47adebe919c5a6539109acaf24785746_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1ab8e6443e77403969074b324578aff4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CalcMenuBar
GetWindowTextA
GetCursor
GetDlgItem
GetMenu
EndDialog
CloseWindow
AppendMenuA
DrawTextA
AppendMenuW
CopyIcon
CreateIcon
CopyRect
DrawTextW
BlockInput
AlignRects
GetDC
GetFocus
GetDC
CloseWindow
BlockInput
IsMenu
DialogBoxParamA
AppendMenuA
CopyRect
GetDlgItem
GetWindowTextA
DialogBoxParamW
DrawTextA
DrawIcon
LoadCursorA
CopyImage
GetWindowTextLengthA
InsertMenuA
GetMenu
EndDialog
DrawTextW

comctl32

ImageList_GetImageInfo
ImageList_Destroy
ImageList_Create
ImageList_DragShowNolock
ImageList_GetImageRect
InitCommonControls
ImageList_GetDragImage
ImageList_Read
ImageList_EndDrag
ImageList_DrawIndirect
ImageList_Replace
ImageList_LoadImageW
ImageList_LoadImageA
ImageList_DrawEx
ImageList_DragEnter
ImageList_LoadImage
ImageList_AddMasked
ImageList_GetIconSize

kernel32

GetLastError
SetLastError
GetModuleFileNameA
GlobalFree
DeleteFileA
lstrlenA
GlobalAlloc
CloseHandle
FreeLibrary
GetFileAttributesA
Sleep
WideCharToMultiByte
lstrcmpA
GetFileSize
lstrcpynA
GetModuleHandleA
GetFileType
GetCommandLineA
GetStdHandle

advapi32

RegEnumKeyA
RegDeleteKeyW
RegGetKeySecurity
RegEnumValueW
RegQueryValueExW
RegReplaceKeyA
RegReplaceKeyW
RegEnumValueA
RegFlushKey
RegOpenKeyExA
RegOpenKeyExW
RegDeleteValueW
RegDeleteValueA
RegQueryValueW
RegCreateKeyExA
RegEnumKeyExA
RegOpenKeyW
RegQueryInfoKeyW
RegCreateKeyW
RegLoadKeyW

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.mdata
Size: 64KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ

.resr
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1ab8e6443e77403969074b324578aff4

Headers

File Characteristics

Imports

user32

comctl32

kernel32

advapi32

Sections

.text Size: 4KB - Virtual size: 3KB

.mdata Size: 64KB - Virtual size: 60KB

.rdata Size: 4KB - Virtual size: 47KB

.reloc Size: - Virtual size: 1KB

.resr Size: 4KB - Virtual size: 2KB

.text
Size: 4KB - Virtual size: 3KB

.mdata
Size: 64KB - Virtual size: 60KB

.rdata
Size: 4KB - Virtual size: 47KB

.reloc
Size: - Virtual size: 1KB

.resr
Size: 4KB - Virtual size: 2KB