b7f8036037f98b376035ef85a4daf05d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b7f8036037f98b376035ef85a4daf05d_JaffaCakes118
Size

48KB
MD5

b7f8036037f98b376035ef85a4daf05d
SHA1

e7565a0f3db8d8cedd5650b0992b72b7e7eaaba9
SHA256

368ab0fc88f617994fc13721849af044c88f484b5b891bbf38f3cba7a2478c0f
SHA512

7c38b798906762d887d37cffded4d5b2941c08a459ce8f8d0ac7e12acda7364880122de07a5c16aef3266f89109fdd9d2db390a836ce3a0ad961871ec3a17de7
SSDEEP

384:wbrqQpBE7c1pdpggZ+12HkXbsxF5TPUcn/5K2YE8YaIDThdfT8TI4Tv:cTE7SpUgRHk0nUY0ZYDnXfwTI4Tv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b7f8036037f98b376035ef85a4daf05d_JaffaCakes118

Files

b7f8036037f98b376035ef85a4daf05d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a1acd64cc31c6d095134cc67ff3645fd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

BlockInput
InsertMenuA
GetCursor
DialogBoxParamW
GetMenu
DrawIcon
AlignRects
LoadCursorA
DialogBoxParamA
CreateIcon
IsMenu
CopyRect
IsWindow
AppendMenuA
CalcMenuBar
GetWindowTextLengthA
DrawIconEx
CloseWindow
LoadMenuA

kernel32

DeleteFileA
Sleep
GetStringTypeA
GlobalFree
GetStdHandle
GetLastError
CloseHandle
GetFileType
SetLastError
lstrlenA
lstrcmpA
HeapFree
GetFileAttributesA
WideCharToMultiByte
GetFileSize
GetCommandLineA
lstrcpynA
GetModuleFileNameA

comctl32

ImageList_AddMasked
ImageList_Copy
ImageList_DrawEx
ImageList_AddIcon
ImageList_GetDragImage
ImageList_DragLeave
ImageList_DragMove
ImageList_GetIcon
ImageList_Destroy
ImageList_Draw
ImageList_DrawIndirect
ImageList_Merge
ImageList_Create
ImageList_GetImageInfo
ImageList_BeginDrag
InitCommonControls

gdi32

GetBitmapBits
ClearBitmapAttributes
CancelDC
AddFontMemResourceEx
AddFontResourceExW
AbortPath
SetTextColor
CopyMetaFileA
GetDCOrgEx
GetBrushOrgEx
GetPixel
GetClipBox
AddFontResourceW
AddFontResourceA
CreateSolidBrush
CloseFigure
GetPixel

advapi32

RegEnumKeyW
RegQueryValueA
RegReplaceKeyA
RegLoadKeyA
RegReplaceKeyW
RegQueryValueW
RegDeleteValueW
RegLoadKeyW
RegCreateKeyExW
RegOpenKeyExA
RegQueryValueExW
RegCreateKeyExA
RegEnumValueW
RegEnumKeyA
RegDeleteValueA
RegOpenKeyA
RegGetKeySecurity
RegCreateKeyW
RegDeleteKeyW
RegFlushKey

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a1acd64cc31c6d095134cc67ff3645fd

Headers

File Characteristics

Imports

user32

kernel32

comctl32

gdi32

advapi32

Sections

.text Size: 8KB - Virtual size: 4KB

.data Size: 28KB - Virtual size: 24KB

.rdata Size: 4KB - Virtual size: 25KB

.rsrc Size: 4KB - Virtual size: 1KB

.text
Size: 8KB - Virtual size: 4KB

.data
Size: 28KB - Virtual size: 24KB

.rdata
Size: 4KB - Virtual size: 25KB

.rsrc
Size: 4KB - Virtual size: 1KB