7681b4189ab8734f28c4400219d86b5d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

7681b4189ab8734f28c4400219d86b5d_JaffaCakes118
Size

43KB
MD5

7681b4189ab8734f28c4400219d86b5d
SHA1

66064e01157714ada22255bffb67c1d892c324a7
SHA256

dd4287ff4f7be8a19bb0c15a93b2950484d7aafa4bace42e56e1199b71049333
SHA512

68403ebaf36127497c7cbd054bce48fc3671cbf20ac6b707ea7dcce609b35dd65c4c14623d1341a3eda0d51c1ed44031c6ed050054d4cafb8c5442972feb9d05
SSDEEP

192:011VqexUqKcei4ai4OJRnNAYGRgkchJJM+Q0Q0MlZz:8VzxUhcei4ai4OjnfN+Tz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7681b4189ab8734f28c4400219d86b5d_JaffaCakes118

Files

7681b4189ab8734f28c4400219d86b5d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ac645cc08cf1acce22ec8f333ba34de9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
GetComputerNameA
CreateProcessA
WriteFile
DeleteFileA
OpenFile
FindAtomA
GetFileTime
DeleteAtom
GlobalFree
CreateThread
GetFileSize
FindFirstFileA
GetCPInfo
GetConsoleMode
ReadFile
GetCommandLineA
OpenFileMappingA
SetLastError
GetStdHandle
ReadConsoleA
ExitThread
Sleep

user32

CopyImage
CopyIcon
DrawTextW
GetWindowTextLengthA
DialogBoxParamW
GetDlgItem
DialogBoxParamA
CreateIcon
IsMenu
GetFocus
DrawIconEx
CopyRect
GetMenu
GetWindowTextA
DrawIcon
LoadMenuA
InsertMenuA
LoadCursorA
GetDC
EndDialog

gdi32

DeleteObject
CreateBrushIndirect
GetBrushOrgEx
CreateFontIndirectA
SetTextColor
RestoreDC
GetBitmapBits
GetCurrentPositionEx
ExtTextOutA
CreateSolidBrush
DeleteDC
CreatePalette
CreateCompatibleBitmap
GetClipBox
ExcludeClipRect
CreateCompatibleDC
GetPixel
CreatePenIndirect
CreateBitmap
GetPixel
CreateDIBSection

advapi32

RegEnumKeyW
RegQueryValueA
RegEnumValueA
RegOpenKeyA
RegDeleteValueW
RegDeleteKeyA
RegQueryValueW
RegEnumKeyA
RegQueryValueExA
RegEnumKeyExW
RegOpenKeyExW
RegEnumKeyExA
RegOpenKeyW
RegCreateKeyExA
RegOpenKeyExA
RegDeleteValueA
RegCreateKeyExW
RegQueryValueExW
RegCreateKeyW
RegSetValueW
RegSetValueA
RegDeleteKeyW
RegEnumValueW
RegCreateKeyA

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 187B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 16.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 210B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 725B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ac645cc08cf1acce22ec8f333ba34de9

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 11KB - Virtual size: 11KB

.rdata Size: 512B - Virtual size: 187B

.data Size: 24KB - Virtual size: 16.8MB

.tls Size: 512B - Virtual size: 210B

.rdata Size: 2KB - Virtual size: 1KB

.idata Size: 2KB - Virtual size: 2KB

.reloc Size: 1024B - Virtual size: 725B

.text
Size: 11KB - Virtual size: 11KB

.rdata
Size: 512B - Virtual size: 187B

.data
Size: 24KB - Virtual size: 16.8MB

.tls
Size: 512B - Virtual size: 210B

.rdata
Size: 2KB - Virtual size: 1KB

.idata
Size: 2KB - Virtual size: 2KB

.reloc
Size: 1024B - Virtual size: 725B