73ed56ff2a7d8eceb2d14e0121996fb7_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

73ed56ff2a7d8eceb2d14e0121996fb7_JaffaCakes118
Size

267KB
MD5

73ed56ff2a7d8eceb2d14e0121996fb7
SHA1

d8a61695b5b600e78d6587db7bcb507a8fc82d28
SHA256

a1522aaad6d5145edf7de4a7867a52387dd8142646cbf43ced8ec3fb1aa4d4fe
SHA512

a545104b08b02496ae8b0cd7debd67f9a6674e22cc6acda8f82f3e83f8d933797d02f56e3783a788d331a770180422d062d2781af35041232989e7fe85d8c9d9
SSDEEP

6144:qMg/aPEkptB0h+KvLTV3Pj/haFUqXrDIKs:o/cX50h+KzR3PjZaFUqXrDIN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
73ed56ff2a7d8eceb2d14e0121996fb7_JaffaCakes118

Files

73ed56ff2a7d8eceb2d14e0121996fb7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7bbc18fae7086bda815abbcee5f7b5ba

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeLibrary
GetModuleHandleA
InitializeCriticalSection
GetModuleFileNameA
ExitProcess
GetLocalTime
GetCurrentThreadId
GetVersionExA
GetACP
GetOEMCP
GetCPInfo
TlsAlloc
GetLastError
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetCurrentProcess
GetStartupInfoA
GetEnvironmentStringsW
HeapCreate
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
LoadLibraryA
GetLocaleInfoA
GetSystemInfo
lstrcmpA
GetProcAddress

advapi32

RegQueryValueExA
RegOpenKeyExA

query

DoneCIISAPIPerformanceData

duser

MapGadgetPoints
LookupGadgetTicket
WaitMessageEx
BuildInterpolation
DUserFindClass
RemoveGadgetProperty
UnregisterGadgetMessageString
SetGadgetFocus
GetStdColorBrushI
DUserSendMethod
PeekMessageExW
UtilDrawOutlineRect
GetGadgetRgn
UtilBuildFont
DUserInstanceOf
SetGadgetRect
GetMessageExW
UtilGetColor
SetGadgetRotation
UtilSetBackground
ForwardGadgetMessage
SetGadgetFillI
SetGadgetStyle
DUserSendEvent
FindGadgetMessages
SetActionTimeslice
CreateGadget

user32

SetCursor
LoadMenuA
LoadBitmapA
EnumWindows
CreatePopupMenu
CreateDialogIndirectParamA
CharLowerA
GetAsyncKeyState
GetSysColor
DestroyIcon
CreateDialogIndirectParamW
IsIconic
CheckMenuItem
EnumClipboardFormats
wsprintfA
IsWindow
CreateMenu
MessageBoxA
GetCapture
GetDlgItemInt
wvsprintfA
LoadIconW
GetMenuStringW
IsMenu
ShowWindow
GetCaretPos

gdi32

RemoveFontResourceExW
CreatePolyPolygonRgn
SetEnhMetaFileBits
CreateBrushIndirect
GdiGetBatchLimit
SetMetaFileBitsEx
CreateMetaFileA

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.KusaC
Size: 512B - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 15KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 87KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 200KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 129KB - Virtual size: 184KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7bbc18fae7086bda815abbcee5f7b5ba

Headers

File Characteristics

Imports

kernel32

advapi32

query

duser

user32

gdi32

Sections

.text Size: 3KB - Virtual size: 2KB

.KusaC Size: 512B - Virtual size: 50KB

.text Size: 15KB - Virtual size: 16KB

.rdata Size: 3KB - Virtual size: 16KB

.edata Size: 87KB - Virtual size: 111KB

.data Size: 5KB - Virtual size: 200KB

.edata Size: 129KB - Virtual size: 184KB

.rsrc Size: 22KB - Virtual size: 21KB

.text
Size: 3KB - Virtual size: 2KB

.KusaC
Size: 512B - Virtual size: 50KB

.text
Size: 15KB - Virtual size: 16KB

.rdata
Size: 3KB - Virtual size: 16KB

.edata
Size: 87KB - Virtual size: 111KB

.data
Size: 5KB - Virtual size: 200KB

.edata
Size: 129KB - Virtual size: 184KB

.rsrc
Size: 22KB - Virtual size: 21KB