b8ed2d4c53f8394655c69c792c218f26_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

b8ed2d4c53f8394655c69c792c218f26_JaffaCakes118
Size

84KB
MD5

b8ed2d4c53f8394655c69c792c218f26
SHA1

fb49cfe9aa78fd9880aa3523be3d76db235e7a31
SHA256

a28075b96e44829494eb58d346b4c742abde1d907ccfe08c87692d816abc1bf1
SHA512

b29d163a8e7656279752d8d156e72cad8ecd746ef4556f22e7193c22f365454ac31024d6233d8663418a114d9fb916b104fe8029fcbcc29542d0fa4a182247b3
SSDEEP

1536:xb9K31FvNC/FQ99JQXHaCAjbthUIS9TQaltTf8RyJkc:+1FvNJ9lCAXthbS9TQ4cyj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b8ed2d4c53f8394655c69c792c218f26_JaffaCakes118

Files

b8ed2d4c53f8394655c69c792c218f26_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3ff19a3c7d05e0ec63701ad3dff8ee09

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CreateIcon
IsMenu
DrawIconEx
CloseWindow
DialogBoxParamW
LoadCursorA
GetWindowTextA
CopyIcon
DrawTextA
GetWindowTextLengthA
GetDlgItem
AppendMenuW
CopyImage
DialogBoxParamA
DrawIcon
AppendMenuA
EndDialog
CopyRect
InsertMenuA
IsWindow

comctl32

ImageList_AddIcon
ImageList_AddMasked
ImageList_Replace
ImageList_Copy
ImageList_BeginDrag
ImageList_Remove
ImageList_Draw
ImageList_GetIconSize
ImageList_DragEnter
ImageList_GetImageRect
InitCommonControls
ImageList_DragShowNolock
ImageList_Create
ImageList_LoadImageA
ImageList_DrawIndirect
ImageList_LoadImageW
ImageList_DragLeave
ImageList_GetImageCount
ImageList_GetDragImage
ImageList_GetIcon
ImageList_EndDrag

kernel32

GetCPInfo
ReadFile
CreateDirectoryA
ReadConsoleA
FindAtomA
FindFirstFileA
GetCommandLineA
DeleteAtom
OpenFileMappingA
CreateProcessA
DeleteFileA
Sleep
GetFileSize
GetStdHandle
DeleteFileW
WriteFile
GetLastError
GetFileTime

advapi32

RegLoadKeyW
RegCreateKeyW
RegOpenKeyExW
RegDeleteKeyW
RegDeleteKeyA
RegOpenKeyExA
RegQueryInfoKeyW
RegOpenKeyW
RegEnumKeyExW
RegReplaceKeyA
RegQueryValueA
RegFlushKey
RegReplaceKeyW
RegQueryInfoKeyA
RegDeleteValueW
RegLoadKeyA
RegDeleteValueA
RegCreateKeyExA
RegEnumKeyExA
RegQueryValueExW

gdi32

GetClipBox
SetTextColor
DeleteObject
CancelDC
CloseFigure
BitBlt
BeginPath
GetPixel
AddFontResourceExW
ExcludeClipRect
GetBrushOrgEx
ExtTextOutA
GetDCOrgEx
AddFontResourceW
ClearBitmapAttributes
DeleteDC
AddFontResourceTracking

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 146KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 239B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3ff19a3c7d05e0ec63701ad3dff8ee09

Headers

File Characteristics

Imports

user32

comctl32

kernel32

advapi32

gdi32

Sections

.text Size: 8KB - Virtual size: 4KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 64KB - Virtual size: 146KB

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: - Virtual size: 239B

.text
Size: 8KB - Virtual size: 4KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 64KB - Virtual size: 146KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: - Virtual size: 239B