a7d14620d6db7c935bf6be6453fd4136_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

a7d14620d6db7c935bf6be6453fd4136_JaffaCakes118
Size

72KB
MD5

a7d14620d6db7c935bf6be6453fd4136
SHA1

1309b4d144de323e23403126594f7481e0880956
SHA256

108cb91c2750e000a0d4d5f4d8f3939c58687a606c46e9873127c9896db55836
SHA512

c168f9b283ddbdce73ae7925f2983d2e65c0455e98b73df3040e95cc057917f720c92965284ae7c7309946723b8d011cdfdc6254184da6083094fbf16bd9279a
SSDEEP

768:jkYlg9QwGVKogRfHKIWDmKtmamf0E/wz4r7JN0d8qhidedhtKdCaZRGiSN:8Wgw3af0Ei4rT23rtORGRN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a7d14620d6db7c935bf6be6453fd4136_JaffaCakes118

Files

a7d14620d6db7c935bf6be6453fd4136_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e74738467eeef82edf1e12bc59c1b530

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegQueryInfoKeyW
RegOpenKeyW
RegCreateKeyW
RegDeleteKeyA
RegLoadKeyW
RegLoadKeyA
RegQueryValueExW
RegDeleteValueW
RegCreateKeyExA
RegQueryValueA
RegReplaceKeyA
RegQueryInfoKeyA
RegDeleteKeyW
RegOpenKeyExW
RegFlushKey
RegGetKeySecurity
RegEnumValueW
RegCreateKeyExW
RegEnumKeyExW

comctl32

ImageList_BeginDrag
ImageList_AddMasked
ImageList_LoadImageW
ImageList_GetImageCount
ImageList_Read
ImageList_Replace
ImageList_LoadImage
ImageList_GetIconSize
ImageList_DragShowNolock
ImageList_DragLeave
ImageList_DragMove
ImageList_GetIcon
ImageList_AddIcon
InitCommonControls
ImageList_Draw
ImageList_Destroy
ImageList_DragEnter
ImageList_GetImageInfo

user32

CloseWindow
GetCursor
IsWindow
CopyImage
GetDC
DialogBoxParamA
DrawTextA
AppendMenuA
LoadMenuA
DrawIcon
CalcMenuBar
LoadCursorA
CopyIcon
DrawTextW
CopyRect
InsertMenuA
IsMenu
GetWindowTextLengthA
AppendMenuW
EndDialog

kernel32

GetCommandLineA
GetModuleFileNameA
DeleteFileA
SetLastError
GetStringTypeA
GetLastError
GetFileAttributesA
HeapAlloc
GetDateFormatA
GetFileSize
GetCPInfo
lstrcpyA
GetModuleHandleA
lstrlenA
GlobalFree
GetStdHandle

gdi32

AddFontResourceA
GetBrushOrgEx
BitBlt
AbortPath
CancelDC
AddFontResourceExA
CreateSolidBrush
RestoreDC
BeginPath
ExtTextOutA
CopyMetaFileA
CloseFigure
AddFontResourceExW
GetPixel
AddFontMemResourceEx
ClearBrushAttributes
DeleteObject
CloseMetaFile
SetTextColor

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 17B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e74738467eeef82edf1e12bc59c1b530

Headers

File Characteristics

Imports

advapi32

comctl32

user32

kernel32

gdi32

Sections

.text Size: 8KB - Virtual size: 4KB

.data Size: 52KB - Virtual size: 51KB

.rdata Size: 4KB - Virtual size: 68KB

.rsrc Size: 3KB - Virtual size: 2KB

.reloc Size: 512B - Virtual size: 17B

.text
Size: 8KB - Virtual size: 4KB

.data
Size: 52KB - Virtual size: 51KB

.rdata
Size: 4KB - Virtual size: 68KB

.rsrc
Size: 3KB - Virtual size: 2KB

.reloc
Size: 512B - Virtual size: 17B