85ef9a6db8ecb2e03db76ff295b57af3_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

85ef9a6db8ecb2e03db76ff295b57af3_JaffaCakes118
Size

1.2MB
MD5

85ef9a6db8ecb2e03db76ff295b57af3
SHA1

bb2438597edc46dc9af223f6c0ed1358be6a5f63
SHA256

8d88a816423f4ea54c0fb5d80568496b3a5829cd0addb9d72687063dd36a11e3
SHA512

ddffd3ea77a32c11d34094abd73904347d720cae34ea59a37469271810f07475e3f8a4b772e676309524661e3e7813b72ba747d0300e16499579878a79e79a99
SSDEEP

24576:DDzKoLXS+qxDG/NR9N/3mNIJF78uXzGjMUQ:DS/IJEMR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
85ef9a6db8ecb2e03db76ff295b57af3_JaffaCakes118

Files

85ef9a6db8ecb2e03db76ff295b57af3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a750761ba0e494905d9a663ce9652ced

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalFree
CopyFileW
DeleteAtom
WriteFile
DeleteFileA
SetLastError
CopyFileA
ReadConsoleA
GetFileSize
ReadFile
ExitThread
GetConsoleMode
CreateDirectoryA
SetLastError
CopyFileExA
OpenFile
GetCPInfo
FindFirstFileA
GetFileTime
ReadFile
ReadConsoleA
GetComputerNameA
GlobalFree
GetFileSize
CopyFileExW

user32

CalcMenuBar
DialogBoxParamA
CopyImage
LoadMenuA
EndDialog
GetCursor
AppendMenuW
DrawIconEx
CreateIcon
InsertMenuA
CopyRect
DialogBoxParamW
CopyIcon
CloseWindow
GetDlgItem
DrawTextA
CalcMenuBar
AppendMenuA
GetDC
CopyIcon
DrawIconEx
GetWindowTextA
CreateIcon
GetMenu
IsWindow
LoadMenuA

comctl32

ImageList_GetDragImage
ImageList_AddMasked
ImageList_ReplaceIcon
ImageList_EndDrag
ImageList_GetImageInfo
ImageList_Replace
ImageList_Draw
ImageList_GetImageCount
ImageList_AddIcon
ImageList_DrawEx
ImageList_GetImageRect
ImageList_GetIcon
ImageList_LoadImage
ImageList_DragLeave
ImageList_AddIcon
ImageList_LoadImageA
ImageList_DrawIndirect
ImageList_Replace
ImageList_GetImageCount
ImageList_GetIconSize
ImageList_GetDragImage
ImageList_GetIcon
ImageList_DrawEx
ImageList_AddMasked
ImageList_DragShowNolock
ImageList_GetImageInfo
ImageList_Merge
ImageList_Read

advapi32

RegQueryValueW
RegQueryValueExA
RegEnumKeyW
RegCreateKeyExW
RegDeleteKeyA
RegQueryValueA
RegQueryValueExW
RegDeleteValueA
RegEnumKeyA
RegLoadKeyW
RegQueryInfoKeyW
RegGetKeySecurity
RegEnumKeyExA
RegOpenKeyA
RegDeleteKeyW
RegCreateKeyExA
RegLoadKeyA
RegOpenKeyExA
RegQueryValueA
RegDeleteKeyA
RegFlushKey
RegReplaceKeyW
RegDeleteValueA
RegCreateKeyExW
RegOpenKeyExW
RegEnumKeyExA
RegQueryInfoKeyA
RegOpenKeyExA
RegLoadKeyW
RegEnumKeyW
RegEnumKeyExW
RegQueryValueW
RegDeleteValueW
RegGetKeySecurity
RegEnumValueA
RegCreateKeyExA
RegQueryInfoKeyA
RegReplaceKeyW
RegEnumKeyW
RegFlushKey
RegQueryValueExW
RegOpenKeyW
RegCreateKeyW
RegQueryValueA
RegDeleteValueW
RegEnumKeyExA
RegEnumValueW
RegDeleteValueA
RegCreateKeyExA
RegDeleteKeyA
RegLoadKeyW
RegEnumKeyA
RegEnumKeyExA
RegDeleteValueA
RegCreateKeyExW
RegDeleteValueW
RegOpenKeyExW
RegReplaceKeyW
RegEnumValueW
RegDeleteKeyW
RegQueryInfoKeyW
RegOpenKeyW
RegReplaceKeyA
RegGetKeySecurity

gdi32

ExtTextOutA
GetPixel
CopyMetaFileA
ClearBrushAttributes
DeleteObject
AddFontResourceExA
AddFontResourceW
BitBlt
GetClipBox
SetTextColor
CloseMetaFile
AbortPath
GetPixel
RestoreDC
ExcludeClipRect
CloseFigure
CloseMetaFile
GetCurrentPositionEx
CopyMetaFileA
ClearBitmapAttributes
AddFontResourceW
ExtTextOutA
GetBrushOrgEx
GetPixel
ExcludeClipRect
AddFontResourceExW
GetPixel
GetClipBox
AbortPath
DeleteDC
AddFontResourceExA
AddFontMemResourceEx

Sections

.text
Size: 132KB - Virtual size: 132KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1.0MB - Virtual size: 6.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 213B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a750761ba0e494905d9a663ce9652ced

Headers

File Characteristics

Imports

kernel32

user32

comctl32

advapi32

gdi32

Sections

.text Size: 132KB - Virtual size: 132KB

.rdata Size: 5KB - Virtual size: 5KB

.data Size: 1.0MB - Virtual size: 6.9MB

.tls Size: 512B - Virtual size: 213B

.rdata Size: 3KB - Virtual size: 2KB

.idata Size: 6KB - Virtual size: 5KB

.reloc Size: 1KB - Virtual size: 1KB

.rsrc Size: 23KB - Virtual size: 23KB

.text
Size: 132KB - Virtual size: 132KB

.rdata
Size: 5KB - Virtual size: 5KB

.data
Size: 1.0MB - Virtual size: 6.9MB

.tls
Size: 512B - Virtual size: 213B

.rdata
Size: 3KB - Virtual size: 2KB

.idata
Size: 6KB - Virtual size: 5KB

.reloc
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 23KB - Virtual size: 23KB