82f1683eb85b765579df8f66986d001c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

82f1683eb85b765579df8f66986d001c_JaffaCakes118
Size

85KB
MD5

82f1683eb85b765579df8f66986d001c
SHA1

51f75711ec440e37c7d0c6de6916363cd5ff1828
SHA256

6d5553915662896e90bc1fdf1c2cc1d1611b8b461e2c40061f098e0a56bcab0f
SHA512

ac464ebd8810ff628341a9611c2923f9f02f283d28bcb52b6b21d12a7eb6eb8587a3985c0eef2cff86ac2105ff701a0bf6476d5122a107b81d19f94bb33e67c8
SSDEEP

1536:4Dx90cLtmdRZmY006jYR3FiW3PodWhHjINj7vwmMOhu4mx:sUJmv06+3ydyDKxPhw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
82f1683eb85b765579df8f66986d001c_JaffaCakes118

Files

82f1683eb85b765579df8f66986d001c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0bcf77c0db8fb2f8abc2c7ee6c6328d7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegDeleteKeyA
RegLoadKeyA

gdi32

CreateCompatibleDC
GetBkColor

user32

SetWindowPlacement
DrawMenuBar
EqualRect
IsCharLowerA
TranslateMDISysAccel
ReleaseDC
DrawTextA
IntersectRect
LoadStringA
LoadKeyboardLayoutA
DefFrameProcA
DrawFrameControl
RegisterWindowMessageA
SetScrollInfo
GetSystemMetrics
GetPropA
ScrollWindow
SystemParametersInfoA
DefWindowProcA
GetDlgItem
ReleaseCapture
GetKeyState
GetFocus
GetWindowLongA
DrawIcon
OpenClipboard
LoadBitmapA
GetMenuItemCount
LoadCursorA
GetKeyboardLayoutNameA
CreateMenu
GetMenuItemID
DestroyIcon
SendMessageA
WindowFromPoint
CreateWindowExA
SetActiveWindow
CharLowerA
GetMenu
UpdateWindow
GetKeyNameTextA
GetClipboardData
CallNextHookEx
CharLowerBuffA
IsDialogMessageA
ActivateKeyboardLayout
CharNextA
MapVirtualKeyA
TrackPopupMenu
SetClipboardData
GetClientRect
IsWindowEnabled
GetKeyboardLayout
PeekMessageA
SetScrollPos
LoadIconA
IsCharUpperA
SetPropA
SetForegroundWindow
GetWindowLongW
GetWindowDC
ScreenToClient
DestroyWindow

kernel32

ExitProcess
VirtualAllocEx
CreateThread
CreateFileA
LoadLibraryA
LockResource
GetDateFormatA
GlobalAlloc
GetVersion
GlobalFindAtomA
SetEvent
CreateEventA
LoadLibraryExA
GetCommandLineW
VirtualAlloc
GetStdHandle
GetLastError
GetModuleHandleA
ExitThread
ResetEvent
MulDiv
ReadFile
CloseHandle
GetCurrentThreadId
GetUserDefaultLCID

Exports

Exports

elHHYoLa51@4
gHaSMb4t6@12
_fY4_7lKxc3K
aQUeI0PbV
_n7uLEG7LaG7@12
_ZNdSiQEiufREn_@12
1SKfMsEh6Q
rblOpoDRw@4

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.aadata
Size: 47KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 244B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0bcf77c0db8fb2f8abc2c7ee6c6328d7

Headers

File Characteristics

Imports

advapi32

gdi32

user32

kernel32

Exports

Exports

Sections

.text Size: 11KB - Virtual size: 11KB

.rdata Size: 10KB - Virtual size: 21KB

.aadata Size: 47KB - Virtual size: 47KB

.data Size: 6KB - Virtual size: 5KB

.edata Size: 512B - Virtual size: 244B

.rsrc Size: 8KB - Virtual size: 8KB

.text
Size: 11KB - Virtual size: 11KB

.rdata
Size: 10KB - Virtual size: 21KB

.aadata
Size: 47KB - Virtual size: 47KB

.data
Size: 6KB - Virtual size: 5KB

.edata
Size: 512B - Virtual size: 244B

.rsrc
Size: 8KB - Virtual size: 8KB