69173acf687987e65bf608efa254cd3d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

69173acf687987e65bf608efa254cd3d_JaffaCakes118
Size

120KB
MD5

69173acf687987e65bf608efa254cd3d
SHA1

5801f46d4f58e723035a9f83e3d6e8c52cc490dd
SHA256

a5425930af70994c382a66363121ff2dd6855ac130c69ef2d0da256b838bb46f
SHA512

b1131967472414488bc0a1abbdad8d4b9890c0ea35c94dc0820eb78a00216d703d5583796745316896ebd3bd54e4e8be88af81e775238fb664e5b9488a7498f7
SSDEEP

1536:Ws4UEqmH/tZTKk9fFYop+ZawK4FoUA2NyoiT8in2u8y3q7VoagHW:cUSDx9KZawKbUA2DQpa7Voa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
69173acf687987e65bf608efa254cd3d_JaffaCakes118

Files

69173acf687987e65bf608efa254cd3d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

074979d5d8877a038f1571b4a027cea3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CopyIcon
IsWindow
DialogBoxParamA
LoadMenuA
GetWindowTextA
LoadCursorA
AppendMenuA
EndDialog
AlignRects
CopyImage
DrawIconEx
GetFocus
CalcMenuBar
DrawIcon
CreateIcon
IsMenu
InsertMenuA
BlockInput
GetDlgItem
GetMenu

kernel32

Sleep
GetLastError
GetStdHandle
GetCommandLineA
OpenFileMappingA
CopyFileW
CopyFileA
DeleteAtom
ExitThread
FindAtomA
GetComputerNameA
CopyFileExA
ReadConsoleA
GlobalFree
FindFirstFileA
WriteFile
GetComputerNameA
CopyFileA
DeleteFileW
ReadConsoleW
CreateThread
CopyFileExA
GetStdHandle
ExitThread
DeleteFileA
OpenFileMappingA
GetFileTime
GetCPInfo
Sleep
FindAtomA
CopyFileExW
DeleteFileA
GetComputerNameA
CopyFileW
GetLastError
Sleep
DeleteFileW
GetConsoleMode
ExitThread
GetStdHandle
CopyFileExA
ReadConsoleW
GetFileSize
CreateThread
OpenFileMappingA
ReadConsoleA
ReadFile
OpenFile
SetLastError
FindFirstFileA
DeleteAtom
GetFileTime

advapi32

RegLoadKeyW
RegEnumKeyExA
RegQueryValueA
RegEnumKeyW
RegGetKeySecurity
RegDeleteKeyA
RegLoadKeyA
RegQueryInfoKeyW
RegEnumKeyA
RegCreateKeyExW
RegOpenKeyA
RegDeleteKeyW
RegCreateKeyW
RegFlushKey
RegOpenKeyExW
RegOpenKeyW
RegEnumValueW
RegCreateKeyExA
RegQueryValueW
RegQueryValueExW
RegQueryValueExA
RegDeleteValueA

gdi32

ClearBrushAttributes
GetBitmapBits
CloseMetaFile
AddFontResourceExA
ClearBitmapAttributes
BeginPath
AddFontMemResourceEx
AddFontResourceTracking
GetCurrentPositionEx
AddFontResourceW
AddFontResourceA
DeleteDC
CancelDC
GetDCOrgEx
ExcludeClipRect
GetClipBox
DeleteObject
GetBrushOrgEx
CreateSolidBrush
SetTextColor

Sections

.text
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 72KB - Virtual size: 2.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 536B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 740B

IMAGE_SCN_MEM_READ

.rsrc
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

074979d5d8877a038f1571b4a027cea3

Headers

File Characteristics

Imports

user32

kernel32

advapi32

gdi32

Sections

.text Size: 8KB - Virtual size: 6KB

.data Size: 72KB - Virtual size: 2.5MB

.tls Size: 4KB - Virtual size: 12B

.rdata Size: 4KB - Virtual size: 536B

.idata Size: 4KB - Virtual size: 2KB

.reloc Size: 4KB - Virtual size: 740B

.rsrc Size: 20KB - Virtual size: 20KB

.text
Size: 8KB - Virtual size: 6KB

.data
Size: 72KB - Virtual size: 2.5MB

.tls
Size: 4KB - Virtual size: 12B

.rdata
Size: 4KB - Virtual size: 536B

.idata
Size: 4KB - Virtual size: 2KB

.reloc
Size: 4KB - Virtual size: 740B

.rsrc
Size: 20KB - Virtual size: 20KB