6a40809a8c1ed4aef9f4fe6dbe1873df_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

6a40809a8c1ed4aef9f4fe6dbe1873df_JaffaCakes118
Size

118KB
MD5

6a40809a8c1ed4aef9f4fe6dbe1873df
SHA1

af73c7e583734b7b6810df3c642110869a94a199
SHA256

f791dd50763d7e775bdcb9da89962211ad1b366dffd12b1868922582808b8278
SHA512

759e72fb5b50c76af86c4253d4e76b55ec306bd1c32c574da87feaef6c03f986a5e4a7dd6a267f80db6c31fc7e3c677aab90d56c6955a6e4a8a77e89b7c06304
SSDEEP

3072:xYV9YZ9UgdV6PGIUuRRyxK0Xw/V4iRRo:xYVkEIuRM80XwNnR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6a40809a8c1ed4aef9f4fe6dbe1873df_JaffaCakes118

Files

6a40809a8c1ed4aef9f4fe6dbe1873df_JaffaCakes118
.exe windows:4 windows x86 arch:x86

65334738a6da8d995e96eae6f776576c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

InsertMenuA
IsMenu
AppendMenuA
DrawIcon
AlignRects
CloseWindow
DialogBoxParamA
LoadMenuA
BlockInput
GetMenu
AppendMenuW
CreateIcon
CopyIcon
DrawTextW
IsWindow
GetDC
LoadCursorA
GetWindowTextLengthA
GetWindowTextA
CopyRect
AppendMenuA
CopyImage
DialogBoxParamW
GetDC
CopyIcon
EndDialog
CopyRect
CalcMenuBar
CreateIcon
DrawIcon
IsWindow
BlockInput
DialogBoxParamA
LoadMenuA
DrawIconEx
InsertMenuA
GetFocus
AppendMenuW
GetWindowTextLengthA

advapi32

RegEnumKeyW
RegEnumKeyExW
RegGetKeySecurity
RegDeleteValueA
RegCreateKeyExA
RegQueryInfoKeyA
RegEnumKeyA
RegQueryValueExA
RegFlushKey
RegEnumKeyExA
RegLoadKeyA
RegCreateKeyW
RegEnumValueA
RegReplaceKeyA
RegOpenKeyW
RegOpenKeyExW
RegQueryValueExW
RegDeleteKeyW
RegCreateKeyExW
RegQueryInfoKeyW

kernel32

GetFileAttributesA
lstrcpynA
lstrlenA
FreeLibrary
GetCommandLineA
lstrcpyA
GlobalAlloc
HeapFree
GetCPInfo
GetModuleFileNameA
Sleep
CloseHandle
lstrcmpiA
GlobalFree
GetStdHandle
GetStringTypeW

comctl32

ImageList_GetIconSize
ImageList_DragShowNolock
ImageList_AddIcon
ImageList_LoadImage
ImageList_GetImageCount
ImageList_DragEnter
ImageList_GetImageInfo
ImageList_DragLeave
ImageList_DrawIndirect
ImageList_GetImageRect
InitCommonControls
ImageList_Remove
ImageList_GetDragImage
ImageList_Create
ImageList_Replace
ImageList_LoadImageA

Sections

.NpLV
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.fIEH
Size: 89KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.iFbk
Size: 7KB - Virtual size: 134KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Pbgz
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

65334738a6da8d995e96eae6f776576c

Headers

File Characteristics

Imports

user32

advapi32

kernel32

comctl32

Sections

.NpLV Size: 15KB - Virtual size: 14KB

.fIEH Size: 89KB - Virtual size: 89KB

.iFbk Size: 7KB - Virtual size: 134KB

.Pbgz Size: 3KB - Virtual size: 2KB

.NpLV
Size: 15KB - Virtual size: 14KB

.fIEH
Size: 89KB - Virtual size: 89KB

.iFbk
Size: 7KB - Virtual size: 134KB

.Pbgz
Size: 3KB - Virtual size: 2KB