854d4e4ed4d119a02914432e38055f48_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

854d4e4ed4d119a02914432e38055f48_JaffaCakes118
Size

172KB
MD5

854d4e4ed4d119a02914432e38055f48
SHA1

724e8e7dd916e01f8e45dcb836118027be2381a2
SHA256

0167f98c1dee9db6dcb84255113d27d1b6dd70c4833b93084ce4cfcb74aa0535
SHA512

df10c326fb94191fee260f90e49cdad3168f3dcd9777f903c2917977692d596df7d1cdc6d95ce40e341c20b35f26b56d3ab143200f371ebb0331d567d5a08b1d
SSDEEP

1536:if3NkMoe0mNFRBC0FQ0vH/HxA48NJ0r+TIxzFbBfVtyottA4khjs80DB7uh0cKkx:ebo5QBzu70r+TsLfVgx309uhnKkwr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
854d4e4ed4d119a02914432e38055f48_JaffaCakes118

Files

854d4e4ed4d119a02914432e38055f48_JaffaCakes118
.exe windows:4 windows x86 arch:x86

cffe451f40188333be42635b941a4e00

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CopyIcon
IsMenu
LoadCursorA
CreateIcon
DrawIconEx
IsWindow
GetCursor
GetMenu
DrawIcon
DrawTextA
DialogBoxParamA
CalcMenuBar
GetWindowTextLengthA
GetWindowTextA
LoadMenuA
BlockInput
GetDlgItem
GetDC
CopyRect
AppendMenuA
CopyImage

kernel32

SetLastError
OpenFileMappingA
GetConsoleMode
CreateThread
DeleteFileA
WriteFile
GetStdHandle
GetComputerNameA
CopyFileExA
Sleep
CopyFileW
ExitThread
FindAtomA
DeleteFileW
GetFileSize
OpenFile
GetFileTime
ReadFile
DeleteFileW
GetFileSize
ReadConsoleA
OpenFileMappingA
FindFirstFileA
Sleep
GetCommandLineA
ExitThread
CopyFileA
CopyFileExA
DeleteFileA
CreateDirectoryA
ReadFile
GetLastError
SetLastError
GetStdHandle

advapi32

RegCreateKeyExA
RegQueryValueExA
RegReplaceKeyA
RegEnumValueW
RegFlushKey
RegCreateKeyExW
RegOpenKeyW
RegDeleteValueA
RegOpenKeyA
RegDeleteValueW
RegGetKeySecurity
RegEnumKeyExW
RegCreateKeyW
RegEnumKeyA
RegEnumKeyW
RegEnumValueA
RegQueryValueW
RegEnumValueW
RegReplaceKeyW
RegGetKeySecurity
RegCreateKeyExW
RegQueryValueA
RegOpenKeyA
RegOpenKeyExW
RegCreateKeyW
RegEnumKeyA
RegQueryInfoKeyW
RegFlushKey
RegQueryValueExA
RegLoadKeyA
RegCreateKeyExA
RegDeleteKeyW
RegQueryInfoKeyA
RegEnumKeyExA
RegLoadKeyW
RegEnumValueA
RegDeleteValueA
RegReplaceKeyA
RegQueryValueExA
RegQueryValueExW
RegOpenKeyExW
RegCreateKeyW
RegCreateKeyExW
RegDeleteKeyW
RegGetKeySecurity
RegOpenKeyA
RegQueryValueW
RegFlushKey
RegEnumKeyExW
RegEnumValueW
RegLoadKeyW
RegDeleteKeyA
RegDeleteValueW
RegQueryValueW
RegEnumValueA
RegReplaceKeyA
RegDeleteKeyW
RegReplaceKeyW
RegLoadKeyW
RegFlushKey
RegOpenKeyW
RegQueryInfoKeyA
RegQueryValueExA
RegQueryInfoKeyW
RegQueryValueA
RegGetKeySecurity
RegDeleteKeyA
RegCreateKeyW
RegCreateKeyExW
RegOpenKeyExA
RegLoadKeyA
RegCreateKeyExA
RegEnumKeyExA
RegOpenKeyExW
RegEnumValueW

Sections

CODE
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.mimjTk
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ydata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bMXgbh
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 124KB - Virtual size: 2.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.hFhPDA
Size: 4KB - Virtual size: 145B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.TuMiLJ
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bcQabf
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ClRbVb
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cffe451f40188333be42635b941a4e00

Headers

File Characteristics

Imports

user32

kernel32

advapi32

Sections

CODE Size: 4KB - Virtual size: 2KB

.mimjTk Size: 8KB - Virtual size: 6KB

.ydata Size: 8KB - Virtual size: 4KB

.bMXgbh Size: 8KB - Virtual size: 5KB

.rdata Size: 124KB - Virtual size: 2.5MB

.hFhPDA Size: 4KB - Virtual size: 145B

.TuMiLJ Size: 4KB - Virtual size: 1KB

.bcQabf Size: 4KB - Virtual size: 3KB

.ClRbVb Size: 4KB - Virtual size: 3KB

CODE
Size: 4KB - Virtual size: 2KB

.mimjTk
Size: 8KB - Virtual size: 6KB

.ydata
Size: 8KB - Virtual size: 4KB

.bMXgbh
Size: 8KB - Virtual size: 5KB

.rdata
Size: 124KB - Virtual size: 2.5MB

.hFhPDA
Size: 4KB - Virtual size: 145B

.TuMiLJ
Size: 4KB - Virtual size: 1KB

.bcQabf
Size: 4KB - Virtual size: 3KB

.ClRbVb
Size: 4KB - Virtual size: 3KB