6a079f23cb1d4271e3f35b2cdbf92afe_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

6a079f23cb1d4271e3f35b2cdbf92afe_JaffaCakes118
Size

212KB
MD5

6a079f23cb1d4271e3f35b2cdbf92afe
SHA1

eed30af9263ec3b32874b08a92032bcb211db9ff
SHA256

819b24d948b8ffa85a8877e4dea628b9610da1f294b9e78b4dd19c1cebdaa9c0
SHA512

875f6f9cd5422301be39ffff110a323fdb967e0dab76ecbb6617b735696d0b349d00b942fadf56885d352b19bc99e0fdd711c6b339c0557717a7d41eb7c0836f
SSDEEP

1536:pS3Cfcox8ocubZcg0g2nCXaXt1yYYPHfsAIxC1rBOUe5HTP68IYFPh0PJCXwBvrV:ks8odknCXa9k/3Hehr68ILC5Wx2Uq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6a079f23cb1d4271e3f35b2cdbf92afe_JaffaCakes118

Files

6a079f23cb1d4271e3f35b2cdbf92afe_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ac2bef36c34d2e48e53c61f44d3321e3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CopyImage
LoadCursorA
DrawTextA
GetMenu
DrawIconEx
LoadMenuA
AppendMenuW
GetDlgItem
CopyRect
GetWindowTextA
BlockInput
DrawTextW
CloseWindow
DialogBoxParamW
GetWindowTextLengthA
DrawIcon
GetDC
GetDlgItem
AlignRects
GetWindowTextLengthA
GetFocus
CloseWindow
GetMenu
DialogBoxParamW
CreateIcon
LoadMenuA
CopyIcon
InsertMenuA
GetCursor
CalcMenuBar
GetWindowTextA
DialogBoxParamA

advapi32

RegQueryValueExA
RegFlushKey
RegCreateKeyExA
RegQueryValueExW
RegDeleteValueW
RegDeleteValueA
RegDeleteKeyA
RegEnumKeyExW
RegLoadKeyW
RegEnumKeyA
RegGetKeySecurity
RegQueryValueA
RegQueryInfoKeyA
RegQueryInfoKeyW
RegOpenKeyW
RegOpenKeyA
RegQueryValueA
RegEnumKeyW
RegDeleteValueW
RegOpenKeyW
RegEnumValueA
RegEnumKeyExA
RegCreateKeyExA
RegFlushKey
RegDeleteValueA
RegCreateKeyW
RegLoadKeyA
RegEnumKeyA
RegEnumKeyExW
RegQueryValueW
RegReplaceKeyA
RegReplaceKeyW
RegOpenKeyExA
RegEnumKeyA
RegCreateKeyW
RegQueryValueExW
RegReplaceKeyW
RegEnumValueW
RegEnumKeyW
RegQueryValueW
RegGetKeySecurity
RegQueryInfoKeyW
RegOpenKeyW
RegQueryInfoKeyA
RegReplaceKeyA
RegDeleteValueW
RegEnumKeyExW
RegDeleteKeyW

kernel32

FindAtomA
OpenFileMappingA
CreateDirectoryA
ExitThread
GetCommandLineA
DeleteFileW
Sleep
ReadFile
DeleteFileA
GetConsoleMode
CopyFileA
CreateThread
GetCPInfo
CopyFileExA
ReadConsoleW

Sections

CODE
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.FQFCID
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.odata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.RsMjid
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ndata
Size: 164KB - Virtual size: 3.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.QCtnMD
Size: 4KB - Virtual size: 216B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.JpmKQr
Size: 4KB - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.HnQSLT
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ac2bef36c34d2e48e53c61f44d3321e3

Headers

File Characteristics

Imports

user32

advapi32

kernel32

Sections

CODE Size: 4KB - Virtual size: 3KB

.FQFCID Size: 8KB - Virtual size: 5KB

.odata Size: 8KB - Virtual size: 4KB

.RsMjid Size: 8KB - Virtual size: 4KB

.ndata Size: 164KB - Virtual size: 3.1MB

.QCtnMD Size: 4KB - Virtual size: 216B

.JpmKQr Size: 4KB - Virtual size: 24B

.HnQSLT Size: 4KB - Virtual size: 3KB

.rsrc Size: 4KB - Virtual size: 3KB

CODE
Size: 4KB - Virtual size: 3KB

.FQFCID
Size: 8KB - Virtual size: 5KB

.odata
Size: 8KB - Virtual size: 4KB

.RsMjid
Size: 8KB - Virtual size: 4KB

.ndata
Size: 164KB - Virtual size: 3.1MB

.QCtnMD
Size: 4KB - Virtual size: 216B

.JpmKQr
Size: 4KB - Virtual size: 24B

.HnQSLT
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 4KB - Virtual size: 3KB