4b38cf6c1fb27b254b057defd88435cf_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

4b38cf6c1fb27b254b057defd88435cf_JaffaCakes118
Size

44KB
MD5

4b38cf6c1fb27b254b057defd88435cf
SHA1

0c6d3a8ab0f821c50f76e9366922f8309043097f
SHA256

0421dab4842d95ba376268a05a817a7de5b49829df66e18a43d5e9cc22bb679b
SHA512

54eb801feb08f1defc4039562ad2bfdf4d4bdbe048098185e20a384ee039be82de40146cce581b9a93114693bacf0d2169ef5fb0bdc375595f7df2e6f11da7e8
SSDEEP

384:Y6pwN8j+Iw+yXSBkyzkSRALTXb9LCdpnNwP5BGfot1c3r3rv9ECPvAf:Y63Sj+yXmXQm+r5CnSP5BGKWb3rve0vw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4b38cf6c1fb27b254b057defd88435cf_JaffaCakes118

Files

4b38cf6c1fb27b254b057defd88435cf_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9d586b989d73315744448568c224a970

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegDeleteKeyW
RegQueryValueExW
RegOpenKeyA
RegLoadKeyW
RegCreateKeyW
RegQueryValueW
RegQueryInfoKeyA
RegCreateKeyExW
RegEnumKeyExW
RegDeleteKeyA
RegOpenKeyExA
RegEnumValueW
RegReplaceKeyW
RegGetKeySecurity
RegEnumKeyW
RegEnumKeyExA
RegOpenKeyExW
RegEnumKeyA
RegReplaceKeyA
RegEnumValueA

comctl32

ImageList_Copy
ImageList_AddIcon
ImageList_Create
ImageList_Merge
ImageList_DrawEx
ImageList_GetIcon
ImageList_DragShowNolock
ImageList_DragLeave
ImageList_Draw
ImageList_GetImageInfo
ImageList_GetDragImage
ImageList_ReplaceIcon
ImageList_LoadImageW
ImageList_Remove
ImageList_LoadImageA
ImageList_DrawIndirect
ImageList_EndDrag
ImageList_Replace
ImageList_GetImageCount
ImageList_DragMove

kernel32

HeapFree
GetLocalTime
SetLastError
GetStringTypeW
CloseHandle
GetLastError
GetStringTypeA
FreeLibrary
GlobalAlloc
WideCharToMultiByte
GetCommandLineA
GetFileType
DeleteFileA
GetDateFormatA
GetFileAttributesA
GetCPInfo
lstrcpynA
GetStdHandle
HeapAlloc
GetFileSize

user32

DrawTextW
GetFocus
LoadMenuA
CloseWindow
GetDlgItem
DrawIcon
EndDialog
AlignRects
DrawTextA
GetCursor
GetWindowTextLengthA
DialogBoxParamW
BlockInput
GetWindowTextA
CopyRect
CalcMenuBar
CreateIcon
GetDC
IsWindow
DialogBoxParamA

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ndata
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 4KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 1024B - Virtual size: 789B

IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9d586b989d73315744448568c224a970

Headers

File Characteristics

Imports

advapi32

comctl32

kernel32

user32

Sections

.text Size: 4KB - Virtual size: 3KB

.ndata Size: 28KB - Virtual size: 24KB

.xdata Size: 4KB - Virtual size: 59KB

.idata Size: 3KB - Virtual size: 2KB

.edata Size: 1024B - Virtual size: 789B

.text
Size: 4KB - Virtual size: 3KB

.ndata
Size: 28KB - Virtual size: 24KB

.xdata
Size: 4KB - Virtual size: 59KB

.idata
Size: 3KB - Virtual size: 2KB

.edata
Size: 1024B - Virtual size: 789B