9fd62717ac2301bebd7cd3ca1a697d69_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

9fd62717ac2301bebd7cd3ca1a697d69_JaffaCakes118
Size

1.2MB
MD5

9fd62717ac2301bebd7cd3ca1a697d69
SHA1

f5e3c6e6dae92724c9bedd5473be8ec28156c137
SHA256

e325424951666a81977af33b4916e1f9f92938cb5d1e358005b663d16ad71858
SHA512

d0b6bf42686bb056f527a8a5f1324ffd0fe665f240165fbcd4e4097bc82a96ae51267e4f2641c151bf1ead8944a61afeb4bcd5102a64b228d555dc37122aa131
SSDEEP

24576:IoEM18dSY2pja3BVCA+TRyeZXKMyal/9FDiC6QDe6VR:/m8Y5xYAIyeZKZal/9R1e6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9fd62717ac2301bebd7cd3ca1a697d69_JaffaCakes118

Files

9fd62717ac2301bebd7cd3ca1a697d69_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8d0922a7d32e0311541a8412511ace5f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadMenuA
CopyRect
DrawIconEx
AppendMenuA
DrawTextW
CreateIcon
GetDC
DialogBoxParamA
DrawTextA
GetFocus
AppendMenuW
GetCursor
BlockInput
GetMenu
DialogBoxParamW
GetDlgItem
InsertMenuA
DrawIcon
CalcMenuBar
CopyIcon
CloseWindow
EndDialog
GetWindowTextA
IsMenu

kernel32

WriteFile
DeleteAtom
FindAtomA
GlobalFree
CreateProcessA
OpenFileMappingA
ReadConsoleA
GetFileSize
CopyFileW
CreateDirectoryA
CopyFileExA
ExitThread
GetLastError
GetCPInfo
GetComputerNameA
CopyFileExW
GetFileTime
GetStdHandle
DeleteFileW
GetConsoleMode
FindFirstFileA
SetLastError

comctl32

ImageList_EndDrag
ImageList_GetDragImage
ImageList_DragEnter
ImageList_DragShowNolock
ImageList_GetImageCount
ImageList_Create
ImageList_GetImageRect
ImageList_GetIcon
ImageList_Copy
ImageList_Destroy
ImageList_AddIcon
ImageList_Read
InitCommonControls
ImageList_ReplaceIcon
ImageList_DrawIndirect
ImageList_GetImageInfo
ImageList_Remove
ImageList_GetIconSize
ImageList_DragLeave
ImageList_Merge
ImageList_Draw
ImageList_AddMasked
ImageList_DrawEx
ImageList_LoadImage

advapi32

RegEnumKeyExA
RegEnumValueW
RegOpenKeyA
RegEnumKeyExW
RegOpenKeyExW
RegQueryInfoKeyA
RegDeleteValueA
RegFlushKey
RegDeleteKeyA
RegLoadKeyA
RegReplaceKeyA
RegOpenKeyW
RegCreateKeyExA
RegLoadKeyW
RegQueryInfoKeyW
RegDeleteKeyW
RegDeleteValueW
RegEnumValueA
RegGetKeySecurity
RegOpenKeyExA
RegCreateKeyW
RegQueryValueW
RegReplaceKeyW

shell32

ExtractIconExA
SHDefExtractIconW
SHChangeNotifyDeregister
CheckEscapesW
DragQueryPoint
PathGetShortPath
SHDefExtractIconA
FindExeDlgProc
ExtractIconEx
DragAcceptFiles
DragQueryFile
FreeIconList
SHUpdateImageW
ExtractIconResInfoW
CheckEscapesA
ExtractIconResInfoA
SHUpdateImageA
SHDoDragDrop
DragQueryFileAorW
ShellAboutA

Sections

.text
Size: 133KB - Virtual size: 133KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1.0MB - Virtual size: 6.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 252B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8d0922a7d32e0311541a8412511ace5f

Headers

File Characteristics

Imports

user32

kernel32

comctl32

advapi32

shell32

Sections

.text Size: 133KB - Virtual size: 133KB

.rdata Size: 10KB - Virtual size: 9KB

.data Size: 1.0MB - Virtual size: 6.4MB

.tls Size: 512B - Virtual size: 252B

.rdata Size: 1KB - Virtual size: 1KB

.idata Size: 4KB - Virtual size: 3KB

.reloc Size: 1KB - Virtual size: 1KB

.rsrc Size: 23KB - Virtual size: 23KB

.text
Size: 133KB - Virtual size: 133KB

.rdata
Size: 10KB - Virtual size: 9KB

.data
Size: 1.0MB - Virtual size: 6.4MB

.tls
Size: 512B - Virtual size: 252B

.rdata
Size: 1KB - Virtual size: 1KB

.idata
Size: 4KB - Virtual size: 3KB

.reloc
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 23KB - Virtual size: 23KB