71468fc1581bbd46383a0d1934f965c0_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

71468fc1581bbd46383a0d1934f965c0_JaffaCakes118
Size

55KB
MD5

71468fc1581bbd46383a0d1934f965c0
SHA1

fd30a8ff0aa63d3e6e8793751756d36a26676bb9
SHA256

617c4468a4e2d0a694c8f04a36f4a289ec0220bcbf453d29ef8fd9508cab7a9a
SHA512

2c194ccb32509a053da0969646a8ed25e673b0b244ed751707fea15d075c76086033f041e75ee5c3b575a8b4becc07c0e5ac772a28297631223419ec69b9a554
SSDEEP

1536:UtEZT/z5WynqpljkK4fpqTBkbItikgRA6K:UtYT/zxqplv9VikcK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
71468fc1581bbd46383a0d1934f965c0_JaffaCakes118

Files

71468fc1581bbd46383a0d1934f965c0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c3eae5e76f6a9a619968df71e0179fde

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CopyImage
CopyIcon
DialogBoxParamW
CloseWindow
LoadCursorA
GetWindowTextLengthA
CreateIcon
IsWindow
GetDlgItem
DrawIcon
DrawTextW
LoadMenuA
DialogBoxParamA
GetDC
GetCursor
DrawTextA
IsMenu
GetFocus
EndDialog
GetWindowTextA
CopyRect
DrawIconEx

kernel32

lstrcpyA
GetStartupInfoA
lstrcatA
WriteFile
lstrcpynA
GetCPInfo
TerminateProcess
lstrcpynW
CreateFileA
SetHandleCount
GetStringTypeA
GetStdHandle
GetFileType
GetModuleFileNameA
SetFilePointer
GetStringTypeW
LCMapStringW
MultiByteToWideChar
LCMapStringA
GetACP
GetOEMCP
GetCurrentProcess
GetCommandLineA

comctl32

CreateStatusWindow
CreateMappedBitmap
ImageList_GetIconSize
DrawStatusTextW
ImageList_LoadImageW
DrawStatusText
ImageList_Destroy
ImageList_Create
ImageList_GetIcon
ImageList_LoadImageA
CreateUpDownControl
ImageList_Add
CreateStatusWindowW
ImageList_DragEnter
CreateToolbarEx
MenuHelp
ImageList_Copy
ImageList_DrawEx
InitCommonControls
ImageList_EndDrag
ImageList_Draw
ImageList_AddIcon

gdi32

CreateFontIndirectA
CreateBrushIndirect
CreateHalftonePalette
CreateCompatibleBitmap
GetCurrentPositionEx
ExtTextOutA
GetBitmapBits
DeleteObject
SetTextColor
CreateDIBSection
GetClipBox
GetDCOrgEx
CreateDIBitmap
CreateCompatibleDC
CreatePenIndirect
ExcludeClipRect
GetBrushOrgEx
DeleteDC
GetPixel
CreatePalette

advapi32

RegOpenKeyExW
RegDeleteKeyA
RegCreateKeyW
RegCreateKeyExA
RegOpenKeyW
RegDeleteValueA
RegOpenKeyA
RegEnumValueA
RegEnumKeyExW
RegSetValueW
RegCreateKeyA
RegEnumKeyA
RegQueryValueExA
RegQueryValueW
RegOpenKeyExA
RegSetValueA
RegQueryValueExW
RegDeleteKeyW
RegDeleteValueW
RegEnumKeyExA

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 47KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c3eae5e76f6a9a619968df71e0179fde

Headers

File Characteristics

Imports

user32

kernel32

comctl32

gdi32

advapi32

Sections

.text Size: 4KB - Virtual size: 3KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 47KB - Virtual size: 120KB

.text
Size: 4KB - Virtual size: 3KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 47KB - Virtual size: 120KB