61d02d92f3d125051bb91affcff18a6d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

61d02d92f3d125051bb91affcff18a6d_JaffaCakes118
Size

48KB
MD5

61d02d92f3d125051bb91affcff18a6d
SHA1

2972fb29ea425bf996fdc6aa4bfd4f2498dc3f41
SHA256

fdc5e137dd0c3b3878ca5bf8157ca8ec17b6e30924044ef4175e6ef3b43ee565
SHA512

3f2474fd90e6fe8edd960109cdf40a15517080c82fd923e2bdcd0004f3459a8ae8bfa552f98bbdda3b03f2a246ab18dc64515a8cd5306024205120811249856f
SSDEEP

768:tHfxD+yg1PWvUngUQoREQvJcTleGZTAsSEwk0vN:tH5tvHUQoRvJcBzesrwk01

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
61d02d92f3d125051bb91affcff18a6d_JaffaCakes118

Files

61d02d92f3d125051bb91affcff18a6d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ea8cb19fa7f35d437315465945239628

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetBitmapBits
ClearBitmapAttributes
AddFontResourceA
GetClipBox
BeginPath
AddFontResourceW
CancelDC
DeleteObject
CreateSolidBrush
CloseMetaFile
BitBlt
AddFontResourceTracking
DeleteDC
GetCurrentPositionEx
AddFontResourceExW
AddFontResourceExA
ExcludeClipRect
CopyMetaFileA

user32

CopyIcon
CreateIcon
GetDlgItem
GetCursor
CopyRect
CloseWindow
DrawIconEx
DialogBoxParamA
AppendMenuW
DialogBoxParamW
EndDialog
AlignRects
GetWindowTextLengthA
InsertMenuA
CalcMenuBar
DrawTextW

advapi32

RegEnumKeyExA
RegCreateKeyW
RegEnumValueW
RegDeleteKeyA
RegOpenKeyA
RegQueryValueExW
RegDeleteValueA
RegOpenKeyExA
RegOpenKeyExW
RegQueryInfoKeyA
RegQueryValueExA
RegDeleteKeyW
RegReplaceKeyW
RegOpenKeyW
RegReplaceKeyA
RegGetKeySecurity
RegQueryValueW
RegCreateKeyExW

kernel32

WriteFile
CreateDirectoryA
GetFileTime
GetCommandLineA
CopyFileA
ReadConsoleA
CreateThread
DeleteFileW
ExitThread
SetLastError
GetLastError
OpenFileMappingA
GetCPInfo
GetStdHandle
GetComputerNameA
CopyFileExW
GlobalFree
CreateProcessA

comctl32

ImageList_Draw
ImageList_BeginDrag
ImageList_DragEnter
ImageList_AddMasked
ImageList_DrawEx
ImageList_GetImageCount
ImageList_Read
ImageList_DragMove
ImageList_GetImageInfo
InitCommonControls
ImageList_GetIconSize
ImageList_GetDragImage
ImageList_ReplaceIcon
ImageList_GetImageRect
ImageList_DrawIndirect
ImageList_Replace
ImageList_DragShowNolock

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 945B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ea8cb19fa7f35d437315465945239628

Headers

File Characteristics

Imports

gdi32

user32

advapi32

kernel32

comctl32

Sections

.text Size: 8KB - Virtual size: 4KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 28KB - Virtual size: 45KB

.rsrc Size: 4KB - Virtual size: 945B

.text
Size: 8KB - Virtual size: 4KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 28KB - Virtual size: 45KB

.rsrc
Size: 4KB - Virtual size: 945B