a6432de2be65ba7812051a04fb4c7b3a_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a6432de2be65ba7812051a04fb4c7b3a_JaffaCakes118
Size

80KB
MD5

a6432de2be65ba7812051a04fb4c7b3a
SHA1

2279cc064900f16778ecd30caf55ce65b2353d1d
SHA256

b46a23587edf93e3cc2745e214ae37264f8aa93c7b960da06ed957f0d39cfdf5
SHA512

d1cd4811833ee4a54d1324153f5fee0d6fce8e83e42a32e2b9d63bb7385cdf314bed3a3cc23904124e2ae86f261e792f681380627001b9a8c5bacdc206709c53
SSDEEP

768:7TEhRaCex5OEh2SsEafwZ7QKvrQBv8aTAc3/lbEWyWP5htbanIMsm:06cwFlaAEqiqdWBzm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a6432de2be65ba7812051a04fb4c7b3a_JaffaCakes118

Files

a6432de2be65ba7812051a04fb4c7b3a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3308cbb9296e4f421cab92e52b1f273c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetBitmapBits
SetTextColor
GetClipBox
BeginPath
AddFontResourceW
CloseFigure
BitBlt
GetPixel
CloseMetaFile
ExtTextOutA
AddFontResourceTracking
AbortPath
AddFontMemResourceEx
BitBlt
DeleteObject
AddFontResourceA
ExcludeClipRect
AbortPath
CopyMetaFileA
SetTextColor
GetPixel
CreateSolidBrush
AddFontResourceW
BeginPath
CloseMetaFile
GetPixel
AddFontResourceExW
ClearBrushAttributes
CancelDC
AddFontResourceExW
GetCurrentPositionEx
CloseFigure
RestoreDC
GetPixel
GetDCOrgEx
ExcludeClipRect
CreateSolidBrush
SetTextColor
CancelDC

comctl32

ImageList_DragEnter
ImageList_AddMasked
ImageList_LoadImage
ImageList_Replace
ImageList_DrawIndirect
ImageList_DragMove
ImageList_LoadImageW
ImageList_GetImageCount
ImageList_Read
ImageList_BeginDrag
ImageList_Remove
ImageList_EndDrag
ImageList_Destroy
ImageList_Copy
ImageList_GetImageRect
ImageList_Draw
ImageList_Merge
ImageList_AddIcon
ImageList_GetImageInfo
ImageList_GetIconSize
ImageList_ReplaceIcon
ImageList_Create
ImageList_GetDragImage
ImageList_LoadImageW
ImageList_Remove
ImageList_DrawEx
ImageList_Read
ImageList_DragShowNolock
ImageList_EndDrag
ImageList_GetImageCount
ImageList_BeginDrag
ImageList_Draw
ImageList_DragLeave
ImageList_Merge

user32

DrawIcon
GetMenu
CloseWindow
GetCursor
CalcMenuBar
DrawIconEx
GetWindowTextA
LoadMenuA
CopyImage
IsWindow
GetFocus

advapi32

RegLoadKeyW
RegQueryValueA
RegDeleteKeyA
RegDeleteValueA
RegQueryValueExA
RegOpenKeyW
RegReplaceKeyW
RegEnumKeyExW
RegQueryValueExW
RegOpenKeyExA
RegCreateKeyExA
RegCreateKeyW
RegDeleteKeyW
RegFlushKey
RegLoadKeyA
RegQueryInfoKeyW
RegOpenKeyExW
RegQueryValueW
RegEnumKeyA

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3308cbb9296e4f421cab92e52b1f273c

Headers

File Characteristics

Imports

gdi32

comctl32

user32

advapi32

Sections

.text Size: 8KB - Virtual size: 4KB

.data Size: 48KB - Virtual size: 44KB

.tls Size: 4KB - Virtual size: 4KB

.rdata Size: 8KB - Virtual size: 5KB

.idata Size: 4KB - Virtual size: 3KB

.rsrc Size: 4KB - Virtual size: 29KB

.text
Size: 8KB - Virtual size: 4KB

.data
Size: 48KB - Virtual size: 44KB

.tls
Size: 4KB - Virtual size: 4KB

.rdata
Size: 8KB - Virtual size: 5KB

.idata
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 4KB - Virtual size: 29KB