829f5fdcd6182e13fbe128b2e9c44f00_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

829f5fdcd6182e13fbe128b2e9c44f00_JaffaCakes118
Size

40KB
MD5

829f5fdcd6182e13fbe128b2e9c44f00
SHA1

a95d648df13620a3a112f65ceb1cc2fd2453fca6
SHA256

9f21ffc154026457bd279676d17de2f9577c72cfced6f59f6316f7329819853d
SHA512

3adc386c95add2b186bcb91f3e0f5dfcb37d85f04fcff9032daeb5977c4df90ad80474ff4664a758da7bc0a74bd945d0caca448395e9b072d0c61852802633ab
SSDEEP

768:sdVKB1JKazecw6rhXoasVjREsbq5D7tWR:SVKB1icj0XEsbgW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
829f5fdcd6182e13fbe128b2e9c44f00_JaffaCakes118

Files

829f5fdcd6182e13fbe128b2e9c44f00_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0bec1d75a7037ca489b95bdbd69649e0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetBrushOrgEx
GetPixel
ClearBrushAttributes
CloseMetaFile
SetTextColor
AddFontResourceTracking
DeleteObject
GetCurrentPositionEx
GetBitmapBits
GetDCOrgEx
GetClipBox
ClearBitmapAttributes
AddFontResourceA
AddFontResourceExW
CopyMetaFileA
AddFontResourceW
ExcludeClipRect
CloseFigure
AbortPath

comctl32

ImageList_LoadImageA
ImageList_Read
ImageList_Remove
InitCommonControls
ImageList_Replace
ImageList_EndDrag
ImageList_DrawIndirect
ImageList_Destroy
ImageList_GetIcon
ImageList_DragEnter
ImageList_Create
ImageList_BeginDrag
ImageList_DragMove
ImageList_DragLeave
ImageList_AddMasked
ImageList_DragShowNolock
ImageList_Draw

kernel32

ReadFile
FindAtomA
DeleteFileA
ExitThread
GetFileSize
GetFileTime
GetCommandLineA
CopyFileExA
ReadConsoleA
GetLastError
OpenFile
DeleteFileW
GetComputerNameA
WriteFile
OpenFileMappingA
GetConsoleMode
FindFirstFileA

user32

InsertMenuA
DialogBoxParamA
GetCursor
CopyRect
AppendMenuW
CalcMenuBar
AppendMenuA
GetDlgItem
DialogBoxParamW
GetWindowTextLengthA
CopyImage
DrawTextW
IsWindow
LoadMenuA
CloseWindow
GetDC
BlockInput
GetMenu

advapi32

RegDeleteKeyA
RegQueryInfoKeyW
RegCreateKeyW
RegDeleteValueA
RegEnumKeyExA
RegDeleteKeyW
RegEnumKeyExW
RegReplaceKeyA
RegQueryValueExA
RegDeleteValueW
RegLoadKeyA
RegOpenKeyW
RegEnumValueW
RegCreateKeyExW
RegReplaceKeyW
RegLoadKeyW
RegEnumKeyW
RegEnumKeyA
RegOpenKeyA

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0bec1d75a7037ca489b95bdbd69649e0

Headers

File Characteristics

Imports

gdi32

comctl32

kernel32

user32

advapi32

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 32KB - Virtual size: 64KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 32KB - Virtual size: 64KB

.rsrc
Size: 1024B - Virtual size: 4KB