6a96242061f90158fccfd74877661c68_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

6a96242061f90158fccfd74877661c68_JaffaCakes118
Size

88KB
MD5

6a96242061f90158fccfd74877661c68
SHA1

a227b2a2ca0772a8fad4f173b0ab2397ab2b7177
SHA256

90d6a85053556723c72d8c3ec04795d7534bbf52a43d965b14b872fd3282babe
SHA512

3b7995225492d9105382a1e7ed4da529f73e6004345310b9e42bb22dcfe17a830bf1a4231b85d7b8a8930141312090cb756414d716cfd3a93321af2cb438a0fd
SSDEEP

1536:1so7VB4jeI0IoEcKPmA4e8tRqcVFUeFmW6S26Jxp8jigM:1FOCCcEmj9WeFmWcwv8j

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6a96242061f90158fccfd74877661c68_JaffaCakes118

Files

6a96242061f90158fccfd74877661c68_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0c3d8b669a157d71e2da1b84c9118692

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDlgItem
AppendMenuA
InsertMenuA
EndDialog
DrawTextW
GetDC
LoadMenuA
LoadCursorA
IsWindow
CopyRect
CopyImage
GetWindowTextLengthA
AlignRects
IsMenu
DrawTextA
BlockInput
CreateIcon
AppendMenuW
GetFocus
CopyIcon

advapi32

RegGetKeySecurity
RegEnumKeyW
RegQueryValueExW
RegEnumValueW
RegQueryInfoKeyW
RegCreateKeyExW
RegReplaceKeyW
RegDeleteValueW
RegEnumKeyA
RegQueryValueW
RegQueryValueA
RegOpenKeyExW
RegOpenKeyA
RegEnumKeyExA
RegQueryValueExA
RegDeleteKeyA
RegLoadKeyW
RegDeleteValueA
RegQueryInfoKeyA
RegFlushKey

kernel32

CreateDirectoryA
GetFileTime
GetCPInfo
SetLastError
Sleep
GetStdHandle
FindFirstFileA
ExitThread
CopyFileExW
GetLastError
GetFileSize
ReadConsoleA
CreateThread
DeleteFileA
CopyFileExA
DeleteFileW
ReadFile
CreateProcessA
GlobalFree
CopyFileW

comctl32

ImageList_GetImageCount
ImageList_AddMasked
ImageList_EndDrag
ImageList_GetIconSize
ImageList_Merge
InitCommonControls
ImageList_Remove
ImageList_Read
ImageList_GetImageInfo
ImageList_DragMove
ImageList_DragShowNolock
ImageList_GetDragImage
ImageList_DragLeave
ImageList_DragEnter
ImageList_AddIcon
ImageList_ReplaceIcon
ImageList_GetImageRect
ImageList_DrawEx

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 68KB - Virtual size: 165KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 2KB

IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0c3d8b669a157d71e2da1b84c9118692

Headers

File Characteristics

Imports

user32

advapi32

kernel32

comctl32

Sections

.text Size: 8KB - Virtual size: 4KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 68KB - Virtual size: 165KB

.reloc Size: - Virtual size: 2KB

.rsrc Size: 4KB - Virtual size: 1KB

.text
Size: 8KB - Virtual size: 4KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 68KB - Virtual size: 165KB

.reloc
Size: - Virtual size: 2KB

.rsrc
Size: 4KB - Virtual size: 1KB