78b5923f62a67118ff3ef7962cf780c8_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

78b5923f62a67118ff3ef7962cf780c8_JaffaCakes118
Size

153KB
MD5

78b5923f62a67118ff3ef7962cf780c8
SHA1

c87f17023d1a0f0f4098ef433c9653f68212e960
SHA256

6bc880a991dbafbabd29b153c6fe33cf474841d1a7c0f68645b2430f387a54db
SHA512

b0fcbf2200b50fe4483e3df86d37856ee9a5eaaf5fb714496bf3fdc4bcaf0682762ef4825e6a0c178a96f9a6b5268a70b2235413ecb6ddafaf6795214a0c7986
SSDEEP

1536:2j4U91uJbdLu0zBZ3V8yHyyq42qyV84fvbJLCBgJhcYhtaayLThYu2mHX3Nup7b:Q9ywyXSgLy70gJeYfajhX2KUqin2R

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
78b5923f62a67118ff3ef7962cf780c8_JaffaCakes118

Files

78b5923f62a67118ff3ef7962cf780c8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c07bca52b6faa82e6e43bf88129f1cfb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

advapi32

RegDeleteValueW
RegCreateKeyW
RegQueryValueW
RegReplaceKeyW
RegOpenKeyA
RegLoadKeyA
RegQueryValueExW
RegQueryValueExA
RegEnumValueA
RegDeleteKeyW
RegQueryValueA
RegQueryInfoKeyA
RegLoadKeyW
RegEnumKeyA
RegEnumValueW
RegOpenKeyW
RegDeleteKeyA
RegCreateKeyExA
RegGetKeySecurity
RegCreateKeyExW
RegFlushKey

kernel32

GetConsoleMode
ReadConsoleA
OpenFile
CreateDirectoryA
ReadFile
CopyFileA
SetLastError
CopyFileExA
GetComputerNameA
GetLastError
OpenFileMappingA
CreateProcessA
GetFileSize
GetFileTime
DeleteAtom
GetCPInfo
DeleteFileW
CopyFileExW
GetFileTime
CreateThread
WriteFile
ReadConsoleA
GetLastError
FindAtomA
OpenFileMappingA
CopyFileA
GetLastError
GetComputerNameA
WriteFile
GetStdHandle
DeleteFileA
DeleteFileW
SetLastError
CreateDirectoryA
FindAtomA
GetCommandLineA
CreateThread
CopyFileExW
OpenFile
DeleteAtom
ReadFile
ReadConsoleA
GetConsoleMode
GetFileTime
Sleep

user32

IsMenu
DrawIconEx
DrawTextW
AlignRects
CloseWindow
BlockInput
GetDlgItem
CopyIcon
DialogBoxParamA
AppendMenuA
LoadCursorA
GetCursor
IsWindow
LoadMenuA
InsertMenuA
GetFocus
GetWindowTextA
DialogBoxParamW
DrawIcon
CopyRect
AppendMenuW
GetWindowTextLengthA

comctl32

DrawStatusTextW
MenuHelp
CreateUpDownControl
CreateStatusWindowA
ImageList_AddIcon
ImageList_Destroy
CreateMappedBitmap
ImageList_Add
CreateToolbar
CreateToolbarEx
DrawStatusText
ImageList_AddMasked
CreateToolbar
CreateStatusWindowW
DrawStatusTextA

shell32

SHUpdateImageW
PathGetShortPath
DragQueryPoint
ExtractIconA
ShellAboutA
DragFinish
SHChangeNotifyDeregister
DllGetVersion
DragQueryFile
SHDefExtractIconW
SHDefExtractIconA
SHDoDragDrop
CheckEscapesA
SHChangeNotifyRegister
ExtractIconExA
FindExeDlgProc
RestartDialog
DragAcceptFiles
SHUpdateImageA
DragQueryFileW
SHFindFiles

gdi32

AddFontMemResourceEx
SetTextColor
AbortPath
GetPixel
CopyMetaFileA
CreateSolidBrush
DeleteObject
GetDCOrgEx
AddFontResourceExW
AddFontResourceExA
AddFontResourceW
GetPixel
ExcludeClipRect
GetClipBox
ExtTextOutA
AddFontResourceA
GetBitmapBits
CancelDC
BitBlt
AbortPath
ClearBrushAttributes
CreateSolidBrush
GetDCOrgEx
AddFontResourceTracking
CloseMetaFile
GetBitmapBits
CancelDC
GetBrushOrgEx
AddFontMemResourceEx
AddFontResourceExA
CopyMetaFileA
GetClipBox
DeleteDC
ExtTextOutA

Sections

.text
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 120KB - Virtual size: 119KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bbs
Size: - Virtual size: 101KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: - Virtual size: 170B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c07bca52b6faa82e6e43bf88129f1cfb

Headers

File Characteristics

Imports

advapi32

kernel32

user32

comctl32

shell32

gdi32

Sections

.text Size: 25KB - Virtual size: 24KB

.data Size: 120KB - Virtual size: 119KB

.bbs Size: - Virtual size: 101KB

.idata Size: 5KB - Virtual size: 4KB

.tls Size: - Virtual size: 170B

.rdata Size: 512B - Virtual size: 1KB

.rsrc Size: 1024B - Virtual size: 16KB

.text
Size: 25KB - Virtual size: 24KB

.data
Size: 120KB - Virtual size: 119KB

.bbs
Size: - Virtual size: 101KB

.idata
Size: 5KB - Virtual size: 4KB

.tls
Size: - Virtual size: 170B

.rdata
Size: 512B - Virtual size: 1KB

.rsrc
Size: 1024B - Virtual size: 16KB