730b8155dca4746a68af04ac17d5cc2d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

730b8155dca4746a68af04ac17d5cc2d_JaffaCakes118
Size

124KB
MD5

730b8155dca4746a68af04ac17d5cc2d
SHA1

8ce039623294ff148199fcf5db1ac45f549aa135
SHA256

773d78a129eaaa75320936ba8d73512d6c505ef8c3f74ddb67fd370399e06899
SHA512

b64e29a1aad30121264d30f5a436038c66d93e15793e922ff9eb4aa36f4dd6154d2a51933896ce5ac541c7f9f3b7c33141d98c0f9f33c3154ad6c087f321885b
SSDEEP

3072:dqDEHHARiw7iMrrVe4jBqshXUpnQYFtaDmFcv:l+FrVbv6VQYFgDmFO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
730b8155dca4746a68af04ac17d5cc2d_JaffaCakes118

Files

730b8155dca4746a68af04ac17d5cc2d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2a783b5a38f54f81a47a67fcead10512

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CreateSolidBrush
ClearBrushAttributes
DeleteObject
GetCurrentPositionEx
SetTextColor
RestoreDC
CloseFigure
AddFontResourceW
CopyMetaFileA
ExcludeClipRect
AbortPath
ExtTextOutA
GetDCOrgEx
GetPixel
AddFontResourceExA
CloseMetaFile
AddFontResourceTracking

comctl32

ImageList_DragShowNolock
ImageList_Destroy
ImageList_ReplaceIcon
ImageList_DrawEx
ImageList_AddMasked
ImageList_LoadImageW
ImageList_GetIcon
ImageList_DragLeave
ImageList_DrawIndirect
ImageList_GetDragImage
ImageList_Copy
ImageList_Create
ImageList_EndDrag
ImageList_Merge
ImageList_DragEnter
ImageList_Draw
ImageList_LoadImageA
ImageList_BeginDrag
ImageList_Replace

kernel32

SetLastError
lstrcatA
GetCommandLineA
GetCPInfo
GetDateFormatA
GetStdHandle
HeapFree
GetFullPathNameA
GetFileType
WideCharToMultiByte
HeapAlloc
GlobalAlloc
GlobalFree
CloseHandle
GetStringTypeA
lstrcmpA
GetFileAttributesA
GetLastError
lstrcmpiA

advapi32

RegQueryValueExA
RegEnumKeyExA
RegQueryValueExW
RegGetKeySecurity
RegDeleteKeyA
RegQueryValueA
RegReplaceKeyA
RegOpenKeyExW
RegEnumKeyExW
RegQueryInfoKeyA
RegEnumValueA
RegEnumKeyA
RegQueryInfoKeyW
RegLoadKeyA
RegCreateKeyW
RegDeleteValueW
RegDeleteValueA
RegDeleteKeyW
RegOpenKeyA

user32

GetDC
DrawTextA
CopyImage
DialogBoxParamA
GetWindowTextLengthA
GetCursor
EndDialog
GetWindowTextA
CopyRect
InsertMenuA
GetMenu
IsMenu
BlockInput
AppendMenuW
GetDlgItem
CalcMenuBar
CreateIcon

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 104KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2a783b5a38f54f81a47a67fcead10512

Headers

File Characteristics

Imports

gdi32

comctl32

kernel32

advapi32

user32

Sections

.text Size: 8KB - Virtual size: 4KB

.data Size: 104KB - Virtual size: 102KB

.rdata Size: 4KB - Virtual size: 62KB

.rsrc Size: 3KB - Virtual size: 2KB

.reloc Size: 512B - Virtual size: 1KB

.text
Size: 8KB - Virtual size: 4KB

.data
Size: 104KB - Virtual size: 102KB

.rdata
Size: 4KB - Virtual size: 62KB

.rsrc
Size: 3KB - Virtual size: 2KB

.reloc
Size: 512B - Virtual size: 1KB