b0f1033294256ce400d8eedb0548fd2a_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

b0f1033294256ce400d8eedb0548fd2a_JaffaCakes118
Size

29KB
MD5

b0f1033294256ce400d8eedb0548fd2a
SHA1

355f256f8aefcf07976653c74b11e37188b8c4f3
SHA256

fabae41dedba9d8c0988ec15b66b3146ca52ff0eaf99207713779b4d650105d6
SHA512

93714162b3820c34dff489eaff63e0f35931246a66920de35788dbc45fa0de0e1d538f1b0e6c5b93b308d2e55073d40c408370d278d54c5960c7ad730e1bd2a7
SSDEEP

768:ae7E8M60LsswQdSDNWe5RhTVJVTRbQbHmMo:NM6JswCSDNWe5vVJrEc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b0f1033294256ce400d8eedb0548fd2a_JaffaCakes118

Files

b0f1033294256ce400d8eedb0548fd2a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

dfb317ee9250be4c00035fb391ff724f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegOpenKeyExW
RegCreateKeyA
RegEnumKeyA
RegSetValueA
RegDeleteKeyW
RegOpenKeyA
RegCreateKeyExA
RegEnumValueW
RegQueryValueExA
RegQueryValueA
RegOpenKeyW
RegQueryValueExW
RegCreateKeyExW
RegEnumValueA
RegSetValueW
RegQueryValueW
RegDeleteKeyA
RegCreateKeyW
RegEnumKeyW
RegEnumKeyExA
RegEnumKeyExW
RegDeleteValueW
RegOpenKeyExA
RegDeleteValueA

comctl32

DrawStatusText
CreateStatusWindow
DrawStatusTextW
ImageList_Draw
ImageList_LoadImageA
ImageList_DrawEx
CreateUpDownControl
CreateStatusWindowW
DllGetVersion
ImageList_LoadImageW
InitCommonControls
ImageList_GetIcon
CreateMappedBitmap
ImageList_AddIcon
ImageList_Destroy
ImageList_Create
ImageList_Add
ImageList_Copy
ImageList_EndDrag
CreateToolbarEx
CreateToolbar
MenuHelp
ImageList_GetIconSize
ImageList_DragEnter

kernel32

LCMapStringA
GetStartupInfoA
GetACP
CreateFileA
LCMapStringW
GetCurrentProcess
lstrcpynA
GetModuleFileNameA
GetStdHandle
GetVersion
lstrcpynW
GetFileType
MultiByteToWideChar
SetHandleCount
lstrcatA
lstrcpyA
GetStringTypeW
GetOEMCP
GetStringTypeA
GetCommandLineA
GetCPInfo
TerminateProcess

user32

GetMenu
CreateIcon
LoadMenuA
GetFocus
IsMenu
DialogBoxParamA
GetDC
CopyIcon
DrawTextW
GetDlgItem
InsertMenuA
CloseWindow
IsWindow
GetWindowTextLengthA
DrawIcon
CopyRect
GetCursor
LoadCursorA
DialogBoxParamW
CopyImage
DrawIconEx
DrawTextA
EndDialog
GetWindowTextA

gdi32

GetClipBox
DeleteDC
ExcludeClipRect
RestoreDC
CreateBitmap
GetCurrentPositionEx
CreateDIBSection
CreateDIBitmap
GetPixel
CreatePalette
CreateHalftonePalette
GetDCOrgEx
ExtTextOutA
CreateBrushIndirect
GetPixel
GetBitmapBits
SetTextColor
CreateCompatibleDC
CreateFontIndirectA
CreatePenIndirect
CreateCompatibleBitmap
CreateSolidBrush

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dfb317ee9250be4c00035fb391ff724f

Headers

File Characteristics

Imports

advapi32

comctl32

kernel32

user32

gdi32

Sections

.text Size: 5KB - Virtual size: 4KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 19KB - Virtual size: 43KB

.text
Size: 5KB - Virtual size: 4KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 19KB - Virtual size: 43KB