885b1104ffd80754bc80d1a1537ba6e0_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

885b1104ffd80754bc80d1a1537ba6e0_JaffaCakes118
Size

358KB
MD5

885b1104ffd80754bc80d1a1537ba6e0
SHA1

0dcd6c0978c3c101dcef235feddf4ddf63f2dd96
SHA256

3b6269cdee051176a1b0204b8efe779edbe6dd74745fc404bc0234039513945e
SHA512

01526d7f4fbee96942fbe1aac470fda6e76a3ecf7c5680eba5bacbf6e2c14dbe0957bfe718071667b77f8fced3cbab0f23cb8d771474dff54485d240705675ba
SSDEEP

6144:BOK95kY/R2655hbxO1hZku4lppXGQ4uAcUi/vFi1c:hUYE85hxOjauq/2EUwo1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
885b1104ffd80754bc80d1a1537ba6e0_JaffaCakes118

Files

885b1104ffd80754bc80d1a1537ba6e0_JaffaCakes118
.dll windows:4 windows x86 arch:x86

245a72dbc961acce712df9e85adb3989

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetConsoleMode
GetLastError
FindFirstFileA
GetComputerNameA
FindAtomA
ReadConsoleA
GetCPInfo
ExitThread
CopyFileExA
Sleep
DeleteAtom
CreateThread
GetCommandLineA
OpenFileMappingA
CreateProcessA
OpenFile
CopyFileW
CopyFileExW
SetLastError
DeleteFileW
DeleteAtom
GetCPInfo
WriteFile
CreateProcessA
CopyFileA
GetFileSize
ReadConsoleA
ExitThread
GetComputerNameA

comctl32

ImageList_AddIcon
ImageList_DragEnter
ImageList_ReplaceIcon
ImageList_Draw
ImageList_Read
ImageList_Copy
ImageList_DrawEx
ImageList_DrawIndirect
ImageList_GetImageInfo
ImageList_GetIconSize
ImageList_Create

advapi32

RegOpenKeyW
RegQueryValueExA
RegQueryInfoKeyW
RegGetKeySecurity
RegReplaceKeyW
RegEnumKeyA
RegCreateKeyW
RegQueryValueW
RegCreateKeyExW
RegOpenKeyA
RegLoadKeyA
RegQueryValueExW
RegEnumValueA
RegReplaceKeyA
RegDeleteValueA
RegOpenKeyExA
RegEnumKeyExA
RegQueryValueExA
RegEnumValueA
RegReplaceKeyA
RegEnumValueW
RegQueryInfoKeyW
RegDeleteKeyW
RegFlushKey
RegDeleteValueW
RegOpenKeyExA
RegEnumKeyExA
RegQueryValueExW
RegReplaceKeyW
RegLoadKeyA
RegQueryInfoKeyA

gdi32

ExcludeClipRect
GetCurrentPositionEx
AddFontResourceExA
ClearBitmapAttributes
GetPixel
GetBrushOrgEx
DeleteObject
GetPixel
AddFontResourceW
ExtTextOutA
CreateSolidBrush
CreateSolidBrush
AddFontResourceExW
CloseMetaFile
AddFontResourceExA
AddFontResourceW
GetPixel
ClearBitmapAttributes
SetTextColor
GetDCOrgEx
GetCurrentPositionEx
ExtTextOutA
GetBrushOrgEx
BitBlt
AbortPath
SetTextColor
CopyMetaFileA
CancelDC
GetPixel
AddFontMemResourceEx
AddFontResourceW
ClearBitmapAttributes
CreateSolidBrush
CloseMetaFile
GetClipBox
BeginPath
DeleteObject
GetBrushOrgEx
CloseFigure
GetClipBox
AddFontResourceExA
GetBitmapBits
CloseMetaFile
DeleteDC
GetCurrentPositionEx
DeleteObject
CancelDC
ExcludeClipRect
ClearBrushAttributes
CloseFigure
ClearBitmapAttributes
ExtTextOutA
AddFontResourceExW
AddFontResourceTracking
AddFontResourceW

user32

EndDialog
DrawIcon
GetWindowTextLengthA
GetWindowTextA
GetFocus
DialogBoxParamW
DrawTextA
IsWindow
AppendMenuA
GetMenu
CloseWindow
CopyRect
CopyIcon
AlignRects
AlignRects
GetDlgItem
AppendMenuA
CreateIcon
InsertMenuA
DrawTextW
LoadCursorA
GetWindowTextLengthA
CopyImage
GetWindowTextA
GetFocus
DrawIcon
CopyRect
DrawIconEx

Sections

.text
Size: 59KB - Virtual size: 58KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 291KB - Virtual size: 290KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bbs
Size: - Virtual size: 348KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: - Virtual size: 285B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 516B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

245a72dbc961acce712df9e85adb3989

Headers

File Characteristics

Imports

kernel32

comctl32

advapi32

gdi32

user32

Sections

.text Size: 59KB - Virtual size: 58KB

.data Size: 291KB - Virtual size: 290KB

.bbs Size: - Virtual size: 348KB

.idata Size: 5KB - Virtual size: 5KB

.tls Size: - Virtual size: 285B

.rdata Size: 512B - Virtual size: 1KB

.rsrc Size: 1024B - Virtual size: 516B

.text
Size: 59KB - Virtual size: 58KB

.data
Size: 291KB - Virtual size: 290KB

.bbs
Size: - Virtual size: 348KB

.idata
Size: 5KB - Virtual size: 5KB

.tls
Size: - Virtual size: 285B

.rdata
Size: 512B - Virtual size: 1KB

.rsrc
Size: 1024B - Virtual size: 516B