8ed7a9b1e79660f41cea1bd8b4196c50_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

8ed7a9b1e79660f41cea1bd8b4196c50_JaffaCakes118
Size

35KB
MD5

8ed7a9b1e79660f41cea1bd8b4196c50
SHA1

bfc6e1ce353a0f2d220c76c14c2ccf2f43ff27f3
SHA256

9d7f4e20420c18dc97456600428ea8b252267f877217e1d941d106413e3ec14a
SHA512

cbda24eff987fff6f548875355e461f2437ace2ad1c73699bfd5d95e760dd4e7c23894ebf020bde0d5d696437bf8f431e5c33dfe5682ffacfff2776fb2e74db6
SSDEEP

768:SPf2yt1Ry9aNZRERMFR+1ijc1iSEwgLV:GVw9cREuF2iwREwgL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8ed7a9b1e79660f41cea1bd8b4196c50_JaffaCakes118

Files

8ed7a9b1e79660f41cea1bd8b4196c50_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2c4d9df8c2b4a1686c1d4129753fdb3e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CopyImage
GetWindowTextLengthA
DialogBoxParamA
GetDC
GetDlgItem
CloseWindow
CreateIcon
CopyRect
DrawTextA
CalcMenuBar
DrawTextW
LoadCursorA
GetCursor
AppendMenuA
AlignRects
DrawTextW
DialogBoxParamA
EndDialog
GetDlgItem
GetFocus
DialogBoxParamW
CloseWindow
BlockInput
DrawTextA
IsMenu
CalcMenuBar
GetWindowTextA
GetDC
CopyRect
AppendMenuA
DialogBoxParamA
EndDialog
DrawTextA
GetMenu
DrawTextW
CreateIcon
DialogBoxParamW
CopyIcon
GetWindowTextA
AppendMenuW
IsWindow

comctl32

ImageList_LoadImage
ImageList_BeginDrag
ImageList_GetImageRect
InitCommonControls
ImageList_DrawEx
ImageList_Remove
ImageList_DragMove
ImageList_Draw
ImageList_GetIconSize
ImageList_DragShowNolock
ImageList_AddMasked
ImageList_GetIcon
ImageList_AddIcon

kernel32

ExitThread
GetCommandLineA
DeleteAtom
CreateDirectoryA
DeleteFileA
ReadFile
DeleteFileW
ReadConsoleA
GetLastError
OpenFileMappingA
SetLastError
CreateThread
GetComputerNameA
CopyFileA
CreateProcessA
GetFileSize
FindFirstFileA
CreateThread
ReadConsoleA
GetComputerNameA
GetCPInfo
CopyFileExW
CreateProcessA
ExitThread
GetCommandLineA
CopyFileA
FindAtomA
FindFirstFileA
ReadFile
GetConsoleMode
ReadConsoleA
DeleteAtom
CopyFileA
CreateDirectoryA
CreateThread
CopyFileExA
FindAtomA
CreateProcessA
GetComputerNameA
GetConsoleMode
SetLastError
GetStdHandle
GetCPInfo
CopyFileA
GetFileSize
CreateThread
GetCommandLineA
ExitThread
ReadConsoleA
DeleteAtom
GetFileTime
CopyFileExW
Sleep
FindFirstFileA
GetCPInfo
WriteFile
OpenFile
GetConsoleMode
SetLastError
GetFileSize

advapi32

RegCreateKeyW
RegFlushKey
RegQueryInfoKeyW
RegEnumKeyExW
RegOpenKeyExW
RegDeleteKeyW
RegCreateKeyExW
RegQueryValueW
RegGetKeySecurity
RegQueryValueExW
RegDeleteValueW

gdi32

DeleteDC
AddFontResourceA
ClearBitmapAttributes
CloseFigure
GetPixel
RestoreDC
AddFontResourceTracking
GetBrushOrgEx
GetClipBox
AbortPath
CopyMetaFileA
AddFontResourceExW
ExtTextOutA
BitBlt
AddFontResourceExA
AddFontResourceW

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 23KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2c4d9df8c2b4a1686c1d4129753fdb3e

Headers

File Characteristics

Imports

user32

comctl32

kernel32

advapi32

gdi32

Sections

.text Size: 2KB - Virtual size: 2KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 23KB - Virtual size: 27KB

.reloc Size: - Virtual size: 3KB

.rsrc Size: 4KB - Virtual size: 4KB

.text
Size: 2KB - Virtual size: 2KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 23KB - Virtual size: 27KB

.reloc
Size: - Virtual size: 3KB

.rsrc
Size: 4KB - Virtual size: 4KB