93efed1e498a0f33712ddeff3ffd5af2_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

93efed1e498a0f33712ddeff3ffd5af2_JaffaCakes118
Size

48KB
MD5

93efed1e498a0f33712ddeff3ffd5af2
SHA1

cc22e2c54cbce03cc808918f731af727df230808
SHA256

ee2fad002d1886bc2ecc8343662e78d844e5ff3bc7c20798573c011599dc3bab
SHA512

9c0c5efeb753b8292ac103206dd32537b170dbb438d34e8e9e3dadeb0193d5d57e64ed8a6e948d4c31eab3871ebf636042ee3726a361908bfd6824cf4f82da47
SSDEEP

768:+4eFqvt2Y41fdc3kVUTox8iesE+SPHGsD:+RqvtircUVSMORZGE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
93efed1e498a0f33712ddeff3ffd5af2_JaffaCakes118

Files

93efed1e498a0f33712ddeff3ffd5af2_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e985e04bce25d93360cb2048b3f9783d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetBitmapBits
AddFontResourceExA
CloseFigure
GetPixel
GetCurrentPositionEx
AddFontMemResourceEx
GetClipBox
GetPixel
SetTextColor
AddFontResourceW
ClearBitmapAttributes
BitBlt
AddFontResourceTracking
CloseMetaFile
DeleteDC
GetBrushOrgEx
ExcludeClipRect
CreateSolidBrush
DeleteObject

user32

DrawTextW
CloseWindow
IsWindow
IsMenu
CopyImage
AppendMenuW
DialogBoxParamA
EndDialog
CopyRect
GetFocus
LoadCursorA
DrawTextA
GetWindowTextA
DialogBoxParamW
DrawIconEx
CalcMenuBar
InsertMenuA
GetMenu

comctl32

ImageList_Merge
ImageList_Copy
InitCommonControls
ImageList_EndDrag
ImageList_GetDragImage
ImageList_Destroy
ImageList_DragMove
ImageList_GetIcon
ImageList_DrawEx
ImageList_DrawIndirect
ImageList_LoadImageA
ImageList_DragShowNolock
ImageList_GetIconSize
ImageList_AddMasked
ImageList_Replace
ImageList_GetImageInfo
ImageList_DragEnter

kernel32

DeleteFileA
CreateProcessA
CopyFileA
DeleteFileW
CopyFileExA
GetCommandLineA
CreateThread
FindFirstFileA
DeleteAtom
OpenFile
Sleep
WriteFile
GetCPInfo
SetLastError
GetLastError
ReadFile
GlobalFree
GetFileTime
CopyFileExW
FindAtomA

advapi32

RegQueryInfoKeyW
RegDeleteKeyA
RegReplaceKeyW
RegCreateKeyExW
RegOpenKeyW
RegQueryValueExA
RegEnumKeyA
RegReplaceKeyA
RegFlushKey
RegDeleteKeyW
RegQueryValueExW
RegEnumKeyW
RegOpenKeyExW
RegQueryValueA
RegDeleteValueW
RegEnumValueW

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 28KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 640B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 172B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e985e04bce25d93360cb2048b3f9783d

Headers

File Characteristics

Imports

gdi32

user32

comctl32

kernel32

advapi32

Sections

.text Size: 8KB - Virtual size: 4KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 28KB - Virtual size: 55KB

.rsrc Size: 4KB - Virtual size: 640B

.reloc Size: - Virtual size: 172B

.text
Size: 8KB - Virtual size: 4KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 28KB - Virtual size: 55KB

.rsrc
Size: 4KB - Virtual size: 640B

.reloc
Size: - Virtual size: 172B