6129fa8d552ea4700fa4f9b7fa057b9b_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

6129fa8d552ea4700fa4f9b7fa057b9b_JaffaCakes118
Size

36KB
MD5

6129fa8d552ea4700fa4f9b7fa057b9b
SHA1

af950096c0147532063d4533d060c5fc30de7350
SHA256

8d2ac4baa89eee37f6db94c6a6c23062a0810774c3de72da7d7f4aa3132beed8
SHA512

cb7f930929d615216e343d6f3b37a9a6836d6e7d9127857c15b13b96c6d7e97acb2eca31a3648b81827a4c3c1eec4b5610052d062821f010c754b1d4138d3051
SSDEEP

192:DDklYaEoeoAXI4FtB8dfxmT6kJCgukl1l2N1c5OIPn3tj/Qzf4t0PFHJj0kqQha:XkAFjdkxm2kVukl1lyX+qCyFH2qha

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6129fa8d552ea4700fa4f9b7fa057b9b_JaffaCakes118

Files

6129fa8d552ea4700fa4f9b7fa057b9b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1edc1573527de7d399cac81ad4d8cca1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegQueryValueW
RegEnumKeyA
RegDeleteKeyW
RegReplaceKeyA
RegOpenKeyW
RegDeleteValueA
RegQueryInfoKeyW
RegDeleteValueW
RegCreateKeyExW
RegFlushKey
RegLoadKeyW
RegEnumValueW
RegCreateKeyExA
RegQueryValueA
RegOpenKeyExW
RegGetKeySecurity

user32

InsertMenuA
BlockInput
CopyIcon
DrawIcon
DrawTextA
IsMenu
AppendMenuA
LoadMenuA
GetDlgItem
GetDC
CalcMenuBar
CopyImage
AppendMenuW
GetFocus
DialogBoxParamW
CreateIcon
DrawIconEx
DrawTextW
IsMenu
DrawIcon
LoadCursorA
CopyRect
AppendMenuA
DrawTextA
AppendMenuW
GetWindowTextLengthA
BlockInput
DrawIconEx
EndDialog
CopyIcon
GetDlgItem
GetDC
CloseWindow
DialogBoxParamW

kernel32

SetLastError
GlobalFree
GetStdHandle
HeapAlloc
lstrcpynA
HeapFree
GetStringTypeA
lstrcatA
GetStringTypeW
GetFileSize
GetModuleHandleA
Sleep
lstrcpyA
CloseHandle
GetFileType
FreeLibrary
GetCommandLineA
GetLastError
lstrcmpiA

comctl32

ImageList_LoadImage
ImageList_Read
ImageList_GetImageCount
ImageList_AddMasked
ImageList_Remove
ImageList_DragLeave
ImageList_AddIcon
ImageList_DrawIndirect
ImageList_DragMove
ImageList_DragShowNolock
ImageList_GetDragImage
ImageList_GetImageInfo
ImageList_Draw
ImageList_EndDrag
ImageList_GetIconSize
ImageList_DragEnter
InitCommonControls
ImageList_GetIcon
ImageList_DrawEx
ImageList_Merge

Sections

.text
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: - Virtual size: 943B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsr�
Size: 4KB - Virtual size: 541B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1edc1573527de7d399cac81ad4d8cca1

Headers

File Characteristics

Imports

advapi32

user32

kernel32

comctl32

Sections

.text Size: 4KB - Virtual size: 2KB

.data Size: 16KB - Virtual size: 15KB

.rdata Size: 8KB - Virtual size: 24KB

.edata Size: - Virtual size: 943B

.rsr� Size: 4KB - Virtual size: 541B

.text
Size: 4KB - Virtual size: 2KB

.data
Size: 16KB - Virtual size: 15KB

.rdata
Size: 8KB - Virtual size: 24KB

.edata
Size: - Virtual size: 943B

.rsr�
Size: 4KB - Virtual size: 541B