8298073cf6eb70337fe9e131a37d2583_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

8298073cf6eb70337fe9e131a37d2583_JaffaCakes118
Size

80KB
MD5

8298073cf6eb70337fe9e131a37d2583
SHA1

2ede9fc04d2066ad817959d4d3065aaee4c6b3e8
SHA256

44916dc205c85b19908ece878557ffd337f5945fe67800e922a094e4f2a31207
SHA512

b96b1755be94dbcd49e32403f468182f93aacd5a928083d33df1d5036e2978fb10494efcc719400a540cb1d3fb73b02b681511ffe68e379c05ca4b6bcc085176
SSDEEP

1536:M2NNVtOxzS7wsDIAAYLHd0EgDw1V+7UqYNR5WK:XXGSc7YLHGESrOWK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8298073cf6eb70337fe9e131a37d2583_JaffaCakes118

Files

8298073cf6eb70337fe9e131a37d2583_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3689e180c4d864f266e10bf3c3b9f398

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CancelDC
GetPixel
GetPixel
ExcludeClipRect
GetCurrentPositionEx
CreateSolidBrush
AbortPath
CloseMetaFile
AddFontResourceTracking
ClearBitmapAttributes
GetClipBox
AddFontResourceW
SetTextColor
RestoreDC
GetBitmapBits
AddFontResourceExA
GetBrushOrgEx
GetDCOrgEx
ExtTextOutA
ClearBrushAttributes

user32

AppendMenuA
DrawIconEx
CreateIcon
DialogBoxParamA
GetWindowTextA
LoadMenuA
DrawTextW
DrawIcon
InsertMenuA
LoadCursorA
GetCursor
GetFocus
EndDialog
AlignRects
CopyIcon
CopyRect
DialogBoxParamW
CalcMenuBar
CloseWindow
CopyImage

kernel32

GetConsoleMode
OpenFile
CopyFileExA
OpenFileMappingA
CopyFileExW
CreateThread
FindAtomA
GetFileTime
GetFileSize
GetLastError
GetCommandLineA
CreateDirectoryA
CopyFileW
CopyFileA
FindFirstFileA
SetLastError
Sleep
GetStdHandle
CreateProcessA
WriteFile

advapi32

RegQueryInfoKeyW
RegDeleteKeyW
RegFlushKey
RegReplaceKeyW
RegOpenKeyA
RegQueryValueExW
RegEnumValueA
RegOpenKeyW
RegCreateKeyExA
RegQueryValueW
RegDeleteValueA
RegQueryInfoKeyA
RegLoadKeyW
RegDeleteValueW
RegEnumValueW
RegCreateKeyExW
RegGetKeySecurity
RegQueryValueA

comctl32

ImageList_GetIcon
ImageList_DragMove
ImageList_LoadImageA
ImageList_BeginDrag
ImageList_GetImageCount
ImageList_Read
ImageList_DragEnter
ImageList_AddMasked
ImageList_Create
ImageList_Remove
ImageList_Replace
ImageList_Destroy
ImageList_Draw
InitCommonControls
ImageList_GetImageRect
ImageList_DragLeave
ImageList_GetImageInfo
ImageList_Copy
ImageList_ReplaceIcon
ImageList_Merge
ImageList_DrawEx

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 190KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 823B

IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3689e180c4d864f266e10bf3c3b9f398

Headers

File Characteristics

Imports

gdi32

user32

kernel32

advapi32

comctl32

Sections

.text Size: 8KB - Virtual size: 4KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 60KB - Virtual size: 190KB

.rsrc Size: 4KB - Virtual size: 4KB

.reloc Size: - Virtual size: 823B

.text
Size: 8KB - Virtual size: 4KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 60KB - Virtual size: 190KB

.rsrc
Size: 4KB - Virtual size: 4KB

.reloc
Size: - Virtual size: 823B