82bba793040145b0a89c384ebda84333_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

82bba793040145b0a89c384ebda84333_JaffaCakes118
Size

2.0MB
MD5

82bba793040145b0a89c384ebda84333
SHA1

647c7c778b181a89bc045852e7f7f65693330bde
SHA256

259649b2480bd6dc15c36e53bd8654d9837da214c7637e73f2e053b912eacaba
SHA512

2db98c911c483a8f4a62de502e6632fa4705a434129fc14f3e46beebfe59512eb25e97887ebef7c4cc512712b044c238f30277c5cc166ca63ee751e99d037e82
SSDEEP

24576:sfMotgKC3FIGtu5VQK0NAjhTd89ZP7L76tvaLJ1WFc+ArklbgUrZdXY9Fq:sZvC3F5tuoK0Kd8LLDt1WF3EcTcU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
82bba793040145b0a89c384ebda84333_JaffaCakes118

Files

82bba793040145b0a89c384ebda84333_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f57fcbcd3f6e9c5e00d1d51d7b31673d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetWindowTextA
DrawTextA
AlignRects
CloseWindow
GetFocus
DialogBoxParamA
InsertMenuA
IsMenu
DialogBoxParamW
CopyIcon
AppendMenuW
GetMenu
CreateIcon
CopyRect
DrawIcon
AppendMenuA
DrawIconEx
DrawTextW
CalcMenuBar
IsWindow
LoadCursorA
GetDlgItem
GetDC
GetDlgItem
AlignRects
CreateIcon
LoadCursorA
EndDialog
IsWindow
CopyImage
AppendMenuW
GetMenu
CloseWindow
GetWindowTextA
DrawIcon
GetFocus
IsMenu
DrawIconEx
InsertMenuA
DrawTextA

kernel32

DeleteAtom
OpenFileMappingA
SetLastError
GetLastError
CopyFileW
GetFileSize
GetComputerNameA
GetFileTime
GetStdHandle
Sleep
ReadFile
ReadConsoleA
WriteFile
OpenFile
CopyFileExW
CopyFileA
FindAtomA
GetCommandLineA
DeleteFileA
GetLastError
ReadConsoleW
GlobalFree
DeleteAtom
ReadFile
ReadConsoleA
CopyFileA
CreateThread
GetFileSize
ExitThread
GetStdHandle
OpenFileMappingA
WriteFile
CopyFileExA
OpenFile
CopyFileW
GetCommandLineA
GetComputerNameA

advapi32

RegDeleteKeyA
RegQueryInfoKeyW
RegEnumKeyA
RegOpenKeyA
RegQueryInfoKeyA
RegCreateKeyExW
RegEnumValueA
RegDeleteValueW
RegGetKeySecurity
RegOpenKeyExA
RegQueryValueW
RegQueryValueExA
RegQueryValueExW
RegCreateKeyW
RegDeleteValueA
RegEnumKeyExW
RegQueryValueExW
RegEnumValueA
RegFlushKey
RegEnumValueW
RegQueryInfoKeyA
RegDeleteKeyW
RegReplaceKeyA
RegLoadKeyA
RegDeleteValueA
RegEnumKeyExW
RegQueryValueW
RegLoadKeyW
RegOpenKeyW
RegCreateKeyExW
RegCreateKeyW
RegDeleteValueW
RegDeleteKeyA
RegEnumKeyExA
RegQueryValueExA
RegOpenKeyA
RegQueryValueA
RegEnumKeyA
RegReplaceKeyW

Sections

.bSs
Size: 260KB - Virtual size: 259KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Bss
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.REloc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.iDAta
Size: 1.7MB - Virtual size: 6.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdAta
Size: 4KB - Virtual size: 232B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.TeXt
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rSRc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rDaTa
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f57fcbcd3f6e9c5e00d1d51d7b31673d

Headers

File Characteristics

Imports

user32

kernel32

advapi32

Sections

.bSs Size: 260KB - Virtual size: 259KB

Bss Size: 8KB - Virtual size: 4KB

.REloc Size: 8KB - Virtual size: 4KB

.iDAta Size: 1.7MB - Virtual size: 6.4MB

.rdAta Size: 4KB - Virtual size: 232B

.TeXt Size: 4KB - Virtual size: 1KB

.rSRc Size: 4KB - Virtual size: 3KB

.rDaTa Size: 8KB - Virtual size: 4KB

.bSs
Size: 260KB - Virtual size: 259KB

Bss
Size: 8KB - Virtual size: 4KB

.REloc
Size: 8KB - Virtual size: 4KB

.iDAta
Size: 1.7MB - Virtual size: 6.4MB

.rdAta
Size: 4KB - Virtual size: 232B

.TeXt
Size: 4KB - Virtual size: 1KB

.rSRc
Size: 4KB - Virtual size: 3KB

.rDaTa
Size: 8KB - Virtual size: 4KB