84939f973d07520c214783349d606630_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

84939f973d07520c214783349d606630_JaffaCakes118
Size

169KB
MD5

84939f973d07520c214783349d606630
SHA1

97a4010ae2c6d61e54fc0c7de47ecc91e5556cb1
SHA256

30f93b19e72ca8ab8bf927817a07c9af6d31a9da7fb64b9d0bb36c575ae79209
SHA512

cf07abc5df4fef8b2b31f8a0d675a002f7bf3903887fa1f871d9367c9811494636c48e27c8d43656bc6806b5fb6e1f0e80758bbab820531f5402dd9fa1a527fe
SSDEEP

3072:D5+kgF3Hi75OBX+ST6fESE8RhDNjWfY7ibOAWtLVDQJxB:PgkQBX+1ESBRvpkjeLVsJxB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
84939f973d07520c214783349d606630_JaffaCakes118

Files

84939f973d07520c214783349d606630_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b3696d96ae4ed57516768102e068b0d8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegDeleteValueA
RegDeleteValueW
RegEnumValueW
RegEnumKeyA
RegEnumValueA
RegQueryInfoKeyA
RegQueryValueExW
RegQueryValueA
RegCreateKeyExW
RegReplaceKeyA
RegQueryValueW
RegOpenKeyA
RegCreateKeyW
RegDeleteKeyW
RegCreateKeyExA
RegEnumKeyExW
RegGetKeySecurity
RegDeleteKeyA
RegLoadKeyA
RegOpenKeyExW
RegEnumKeyExA
RegFlushKey
RegOpenKeyA
RegQueryInfoKeyW
RegCreateKeyExA
RegDeleteValueW
RegDeleteKeyW
RegFlushKey
RegQueryValueExW
RegEnumKeyA
RegEnumKeyExW
RegCreateKeyExW
RegReplaceKeyW
RegLoadKeyW
RegReplaceKeyA
RegQueryInfoKeyA
RegCreateKeyW
RegOpenKeyExA
RegEnumValueA
RegEnumKeyW
RegDeleteKeyA
RegQueryValueA
RegOpenKeyExW
RegEnumKeyExA
RegQueryValueExA

user32

AlignRects
DrawIcon
DrawTextA
DrawTextW
DialogBoxParamW
LoadCursorA
CopyImage
CreateIcon
GetMenu
GetWindowTextA
BlockInput
InsertMenuA
CloseWindow
CopyRect
GetFocus
GetDlgItem
DrawIconEx
GetCursor
LoadMenuA
IsMenu
AppendMenuA
CopyImage
GetDC
CopyIcon
CopyRect
DialogBoxParamW
GetMenu
CloseWindow
DialogBoxParamA
GetDlgItem
LoadCursorA
CreateIcon
AppendMenuA
BlockInput
AlignRects
GetCursor
EndDialog
GetWindowTextA
DrawTextA
CalcMenuBar
DrawIcon
DrawTextW
AlignRects
DialogBoxParamW
DrawIconEx
LoadCursorA
IsWindow
DialogBoxParamA
GetDC
BlockInput
AppendMenuA
InsertMenuA
CopyRect
DrawTextA
IsMenu
GetFocus
CloseWindow
GetDlgItem
AppendMenuW
EndDialog
CreateIcon
GetMenu
AppendMenuA
IsMenu
CreateIcon
CopyImage
DialogBoxParamW
LoadMenuA
DrawIconEx
IsWindow
AppendMenuW
CopyRect
DrawTextW
InsertMenuA
GetMenu
GetWindowTextLengthA
GetFocus
CopyIcon
GetDlgItem
DrawIcon

kernel32

CreateDirectoryA
CreateThread
FindFirstFileA
CopyFileA
OpenFile
DeleteAtom
WriteFile
CreateProcessA
GetComputerNameA
GetFileSize
DeleteFileA
DeleteFileW
GetLastError
GetCPInfo
OpenFileMappingA
CopyFileExW
ReadFile
SetLastError
CopyFileExA
ReadConsoleA
GetCommandLineA
Sleep
GetFileTime
ExitThread

comctl32

ImageList_Create
ImageList_DragShowNolock
ImageList_LoadImageA
ImageList_LoadImage
ImageList_Copy
ImageList_Draw
ImageList_DrawIndirect
ImageList_LoadImageW
ImageList_GetImageCount
ImageList_Destroy
ImageList_GetImageInfo
ImageList_Remove
ImageList_GetImageRect
InitCommonControls
ImageList_DragLeave
ImageList_DrawEx
ImageList_AddIcon
ImageList_GetIcon

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 53KB - Virtual size: 159KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b3696d96ae4ed57516768102e068b0d8

Headers

File Characteristics

Imports

advapi32

user32

kernel32

comctl32

Sections

.text Size: 4KB - Virtual size: 3KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 53KB - Virtual size: 159KB

.text
Size: 4KB - Virtual size: 3KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 53KB - Virtual size: 159KB