68ab2a6801bbc18e727d8ac093c8087f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

68ab2a6801bbc18e727d8ac093c8087f_JaffaCakes118
Size

86KB
MD5

68ab2a6801bbc18e727d8ac093c8087f
SHA1

58b447943943d5c7da18229382e8df688027c9fd
SHA256

aea746347a6170fb3951ad21044c52de8d36a542dd13477ba63e88e69fd61b66
SHA512

cf7fc0bb5a6ab53d26c994476aea1b612715db4727bc73f55828782e9ea0b40d892ccd978a7e55ca27d91fc20d3a60a858901faf4357e41ebb69a189ba740768
SSDEEP

1536:OOFbBTpKU0RSK0A2P90cQCrpBjwdnUph+6T2:OOzdKp4dP9VHNBjUUpE6T

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
68ab2a6801bbc18e727d8ac093c8087f_JaffaCakes118

Files

68ab2a6801bbc18e727d8ac093c8087f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0c8bec8424f6fae805410d5f8ff82759

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadMenuA
CloseWindow
AppendMenuA
GetWindowTextLengthA
DrawIcon
LoadCursorA
GetFocus
CalcMenuBar
GetCursor
IsWindow
InsertMenuA
CopyImage
GetDC
CopyIcon
GetMenu
BlockInput
GetDlgItem
GetWindowTextA
DrawIconEx

gdi32

GetClipBox
CreateSolidBrush
AddFontResourceW
AddFontResourceExA
CancelDC
GetDCOrgEx
AddFontResourceTracking
AddFontResourceExW
GetBitmapBits
GetBrushOrgEx
DeleteDC
CloseFigure
ClearBrushAttributes
GetCurrentPositionEx
ClearBitmapAttributes
CloseMetaFile
AddFontResourceA

kernel32

CopyFileExW
ReadConsoleA
CreateThread
DeleteAtom
GetLastError
Sleep
WriteFile
SetLastError
CopyFileA
CopyFileExA
GetStdHandle
GetCommandLineA
CopyFileW
CreateDirectoryA
FindAtomA
ExitThread
GetCPInfo
GetFileSize
GlobalFree

comctl32

ImageList_EndDrag
ImageList_Destroy
ImageList_DragLeave
ImageList_LoadImageA
ImageList_DrawEx
ImageList_AddIcon
ImageList_GetImageInfo
ImageList_Replace
ImageList_Draw
ImageList_GetDragImage
ImageList_AddMasked
ImageList_GetIconSize
ImageList_Merge
ImageList_GetImageCount
ImageList_GetIcon
ImageList_Copy
ImageList_BeginDrag
ImageList_DragMove

advapi32

RegFlushKey
RegEnumValueW
RegCreateKeyExW
RegOpenKeyW
RegQueryInfoKeyA
RegQueryValueA
RegQueryValueW
RegLoadKeyW
RegQueryInfoKeyW
RegCreateKeyExA
RegQueryValueExW
RegEnumKeyA
RegDeleteKeyA
RegCreateKeyW
RegEnumValueA
RegReplaceKeyA
RegReplaceKeyW

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 62KB - Virtual size: 196KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0c8bec8424f6fae805410d5f8ff82759

Headers

File Characteristics

Imports

user32

gdi32

kernel32

comctl32

advapi32

Sections

.text Size: 4KB - Virtual size: 3KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 62KB - Virtual size: 196KB

.rsrc Size: 16KB - Virtual size: 20KB

.text
Size: 4KB - Virtual size: 3KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 62KB - Virtual size: 196KB

.rsrc
Size: 16KB - Virtual size: 20KB