5fb04b7dbdb9a5a57eb633795f6645a9_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

5fb04b7dbdb9a5a57eb633795f6645a9_JaffaCakes118
Size

124KB
MD5

5fb04b7dbdb9a5a57eb633795f6645a9
SHA1

44948d3b26338d9306eb2d13a521fab5fdee2f71
SHA256

6461ee4ff1296419ca74ef14090f24f948d72982b958b0da241913a5eb9aae35
SHA512

3156b07b9c72c6816c81321a2d6e239a5e9cde412dcb1349a670f9d86ac03faf347574e42766c77a736a99ae3e23ad3ec2fd12550ddf1ca4c331f8c3933782da
SSDEEP

3072:guSul/DSQq8atdZVVXWU4+mw3ecqLQcV8lw:h7SQq8aZmc53ecEQcVAw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5fb04b7dbdb9a5a57eb633795f6645a9_JaffaCakes118

Files

5fb04b7dbdb9a5a57eb633795f6645a9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

64922e22a065c8a2ba9dad2da45af2e1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

AppendMenuA
IsWindow
DrawTextA
DrawIconEx
IsMenu
GetWindowTextA
DialogBoxParamW
GetDC
GetCursor
DialogBoxParamA
CloseWindow
DrawIcon
LoadCursorA
GetMenu
CreateIcon
CopyImage

advapi32

RegOpenKeyExW
RegCreateKeyW
RegEnumKeyExA
RegDeleteKeyW
RegLoadKeyW
RegOpenKeyExA
RegQueryValueExW
RegEnumKeyExW
RegCreateKeyExA
RegGetKeySecurity
RegLoadKeyA
RegQueryValueA
RegDeleteValueA
RegEnumKeyA
RegDeleteKeyA
RegQueryValueW
RegEnumKeyW
RegQueryInfoKeyA

comctl32

ImageList_DrawEx
ImageList_DrawIndirect
ImageList_LoadImage
ImageList_Merge
ImageList_Draw
ImageList_Replace
ImageList_BeginDrag
ImageList_LoadImageW
ImageList_DragMove
ImageList_AddMasked
ImageList_GetDragImage
ImageList_GetIcon
ImageList_GetImageRect
ImageList_GetImageInfo
ImageList_AddIcon
ImageList_DragEnter
ImageList_Create

kernel32

GetFileTime
GetConsoleMode
GetLastError
CopyFileA
GetStdHandle
GlobalFree
OpenFile
GetCommandLineA
GetFileSize
WriteFile
Sleep
ReadConsoleA
ExitThread
FindAtomA
OpenFileMappingA
GetCPInfo
CopyFileW
SetLastError

gdi32

BeginPath
GetClipBox
CopyMetaFileA
DeleteObject
AddFontResourceExA
GetPixel
AddFontMemResourceEx
CloseFigure
ExtTextOutA
AbortPath
CloseMetaFile
GetDCOrgEx
GetBitmapBits
GetCurrentPositionEx
AddFontResourceA
DeleteDC

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 104KB - Virtual size: 137KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

64922e22a065c8a2ba9dad2da45af2e1

Headers

File Characteristics

Imports

user32

advapi32

comctl32

kernel32

gdi32

Sections

.text Size: 8KB - Virtual size: 4KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 104KB - Virtual size: 137KB

.reloc Size: - Virtual size: 1KB

.rsrc Size: 4KB - Virtual size: 1KB

.text
Size: 8KB - Virtual size: 4KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 104KB - Virtual size: 137KB

.reloc
Size: - Virtual size: 1KB

.rsrc
Size: 4KB - Virtual size: 1KB