b75ce29abbc68f6d406af0397bf2d529_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b75ce29abbc68f6d406af0397bf2d529_JaffaCakes118
Size

80KB
MD5

b75ce29abbc68f6d406af0397bf2d529
SHA1

4a35cb316f400386f276eb2986f7a29fb16553b5
SHA256

9f4fbf462a678b2b03de39e9d11c5f9226634ed5c4361300fc2b79e46b367a50
SHA512

b85c78046136ada9f082101c631d54671cb2e31576a2bbfad999312a3649baf13d3b54a5b36aee24df3d3d8ef9eb00bcbe7e13555629270be044f46e6e1962db
SSDEEP

1536:00xt1Wz+Qbu+rN1mFNVkQmFwqb12wsw7Z:1xt1cbu+BANVkQmSqb13

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b75ce29abbc68f6d406af0397bf2d529_JaffaCakes118

Files

b75ce29abbc68f6d406af0397bf2d529_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ce285497aedcfa5f547a30d7a6bbc851

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
CopyFileExW
CopyFileW
SetLastError
DeleteFileA
CreateDirectoryA
GetConsoleMode
DeleteFileW
GetFileSize
WriteFile
GlobalFree
DeleteAtom
FindAtomA
OpenFileMappingA
CopyFileA
GetCPInfo
GetLastError
SetLastError
GetFileTime
CopyFileW
ReadFile
GetComputerNameA
FindFirstFileA

user32

CopyRect
DrawIcon
GetWindowTextA
CalcMenuBar
InsertMenuA
DialogBoxParamA
AppendMenuA
DrawTextW
IsMenu
GetDC
AppendMenuW
CopyImage
GetCursor
BlockInput
CopyIcon
CloseWindow
CreateIcon

advapi32

RegCreateKeyW
RegCreateKeyExW
RegCreateKeyExA
RegEnumKeyW
RegGetKeySecurity
RegEnumValueA
RegDeleteValueA
RegQueryInfoKeyA
RegDeleteValueW
RegQueryValueExA
RegEnumValueW
RegEnumValueA
RegDeleteKeyA
RegFlushKey
RegQueryInfoKeyA
RegQueryValueA
RegReplaceKeyA
RegOpenKeyExA
RegEnumKeyW
RegQueryValueExA
RegEnumKeyExA
RegEnumKeyA
RegEnumValueA
RegEnumKeyW
RegLoadKeyA
RegOpenKeyExW
RegDeleteValueW
RegOpenKeyA
RegFlushKey
RegCreateKeyW
RegDeleteKeyA
RegReplaceKeyA
RegOpenKeyExA
RegEnumKeyExW
RegCreateKeyExW
RegReplaceKeyW
RegQueryValueW
RegEnumValueW

comctl32

ImageList_DragMove
ImageList_GetImageInfo
ImageList_Replace
ImageList_GetIconSize
ImageList_ReplaceIcon
ImageList_DragEnter
ImageList_DragShowNolock
ImageList_GetImageCount
ImageList_Destroy
ImageList_Draw
ImageList_EndDrag
ImageList_AddMasked
ImageList_Create
ImageList_DrawIndirect
ImageList_DrawEx
ImageList_AddIcon
ImageList_LoadImageA
ImageList_GetDragImage
ImageList_Merge

Sections

.text
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ce285497aedcfa5f547a30d7a6bbc851

Headers

File Characteristics

Imports

kernel32

user32

advapi32

comctl32

Sections

.text Size: 8KB - Virtual size: 6KB

.data Size: 48KB - Virtual size: 46KB

.tls Size: 4KB - Virtual size: 4KB

.rdata Size: 8KB - Virtual size: 4KB

.idata Size: 4KB - Virtual size: 2KB

.rsrc Size: 4KB - Virtual size: 25KB

.text
Size: 8KB - Virtual size: 6KB

.data
Size: 48KB - Virtual size: 46KB

.tls
Size: 4KB - Virtual size: 4KB

.rdata
Size: 8KB - Virtual size: 4KB

.idata
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 4KB - Virtual size: 25KB