8c32d698c02bf2f13ecd276863c2ccb7_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

8c32d698c02bf2f13ecd276863c2ccb7_JaffaCakes118
Size

156KB
MD5

8c32d698c02bf2f13ecd276863c2ccb7
SHA1

43edc030aea63a29a0a868f837968cc3a5c45d95
SHA256

9d53e8094e81f653dd9d53ad1b90f6e6dd9e6790f12e8ef8fa3b792bfcd90ba3
SHA512

b9c75220ffe3e2a64b9a8e22e852bf0c79b9ed67964fca0ffc13136f38d6abdc936ccfc73f8a180622b0002a08015c4f672292141a28058f2511b9ccce0c7093
SSDEEP

1536:6cSUVMzkUihBsul2vTt9YXZjlWS9NkKCxfVvZpS2Qd3q7VoagH:aUGShBsul2vZKQSrOsda7Voa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8c32d698c02bf2f13ecd276863c2ccb7_JaffaCakes118

Files

8c32d698c02bf2f13ecd276863c2ccb7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d366881c0278a925a5d273da3a1bf898

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileSize
GetComputerNameA
FindFirstFileA
OpenFile
CopyFileExW
Sleep
DeleteAtom
CopyFileExA
GetFileTime
DeleteFileW
ReadConsoleA
ReadFile
CreateDirectoryA
GetCPInfo
CreateProcessA
GetCommandLineA
CreateThread
OpenFileMappingA
FindAtomA

gdi32

CloseMetaFile
AbortPath
CreateSolidBrush
AddFontResourceTracking
ExtTextOutA
RestoreDC
DeleteDC
GetBitmapBits
CopyMetaFileA
ClearBitmapAttributes
AddFontResourceExA
AddFontResourceExW
AddFontResourceA
SetTextColor
GetPixel
GetCurrentPositionEx
CancelDC
GetClipBox
BitBlt
DeleteObject
GetBitmapBits
AddFontResourceExW
ExtTextOutA
AddFontResourceExA
AddFontResourceW
GetDCOrgEx
DeleteDC
GetCurrentPositionEx
BitBlt
AbortPath
ClearBrushAttributes
GetPixel
DeleteObject
AddFontMemResourceEx
CloseFigure
AddFontMemResourceEx
GetPixel
GetBrushOrgEx
AddFontResourceExW
GetClipBox
RestoreDC
CancelDC
DeleteDC
SetTextColor
GetBitmapBits
ClearBitmapAttributes
GetDCOrgEx
BitBlt
ExtTextOutA
CloseMetaFile
AddFontResourceW
CloseFigure
CopyMetaFileA
GetCurrentPositionEx
CreateSolidBrush
AddFontResourceExA

advapi32

RegQueryInfoKeyW
RegQueryValueExA
RegLoadKeyW
RegEnumKeyExA
RegQueryInfoKeyA
RegCreateKeyW
RegEnumValueW
RegDeleteValueA
RegDeleteKeyA
RegQueryValueA
RegDeleteValueW
RegOpenKeyExA
RegDeleteKeyW
RegEnumValueA
RegCreateKeyExA
RegCreateKeyExW
RegReplaceKeyA
RegEnumKeyExW
RegOpenKeyExW
RegGetKeySecurity
RegQueryValueExW
RegEnumValueW
RegCreateKeyExA
RegDeleteKeyW
RegGetKeySecurity
RegCreateKeyW
RegQueryValueA
RegOpenKeyA
RegEnumKeyExA
RegEnumValueA
RegLoadKeyA
RegQueryInfoKeyA
RegEnumKeyA
RegCreateKeyExW
RegQueryValueExW
RegEnumKeyW
RegQueryValueW
RegOpenKeyExW
RegReplaceKeyW
RegLoadKeyW
RegOpenKeyExA
RegQueryValueExA
RegDeleteKeyA
RegDeleteValueA

user32

DrawTextA
CopyIcon
BlockInput
EndDialog
CalcMenuBar
CopyRect
InsertMenuA
GetWindowTextA
AlignRects
IsMenu
DrawIcon
GetFocus
IsWindow
LoadCursorA
CloseWindow
AppendMenuA
CopyImage
DialogBoxParamW
GetCursor
AppendMenuW
LoadMenuA
GetDlgItem
EndDialog
GetCursor
DrawIcon
CreateIcon
CloseWindow
LoadMenuA
GetMenu
DialogBoxParamW
CopyRect
CopyImage
GetFocus
AppendMenuA
IsMenu
CopyIcon
AppendMenuW

Sections

.text
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 722B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 88KB - Virtual size: 4.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 22B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d366881c0278a925a5d273da3a1bf898

Headers

File Characteristics

Imports

kernel32

gdi32

advapi32

user32

Sections

.text Size: 24KB - Virtual size: 20KB

.rdata Size: 4KB - Virtual size: 722B

.data Size: 88KB - Virtual size: 4.9MB

.tls Size: 4KB - Virtual size: 22B

.rdata Size: 4KB - Virtual size: 1KB

.idata Size: 4KB - Virtual size: 3KB

.reloc Size: 4KB - Virtual size: 1KB

.rsrc Size: 20KB - Virtual size: 19KB

.text
Size: 24KB - Virtual size: 20KB

.rdata
Size: 4KB - Virtual size: 722B

.data
Size: 88KB - Virtual size: 4.9MB

.tls
Size: 4KB - Virtual size: 22B

.rdata
Size: 4KB - Virtual size: 1KB

.idata
Size: 4KB - Virtual size: 3KB

.reloc
Size: 4KB - Virtual size: 1KB

.rsrc
Size: 20KB - Virtual size: 19KB