bd99d928e3224352f2a3c77f86d4e120_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

bd99d928e3224352f2a3c77f86d4e120_JaffaCakes118
Size

28KB
MD5

bd99d928e3224352f2a3c77f86d4e120
SHA1

a61621e8d471aa2283cfbc443b1ce5c04ffc5b54
SHA256

6005fc4ee99c8c35dc34af628474d0ad65939ec38122ed93d2e81f8ac1568754
SHA512

63d73b144508b76140c51542d6cde21c90d0be4d8dcacecfc0ebcbbb0cf5c39ca360d15507bbe26ea695e5dfc2013dd29e0f38b5313206a83a1078817653de6a
SSDEEP

768:sKu43BRxFjIoW9wcvIruSCLsiA8X1WoN3orGT:Vu4RPpe2cvIruSWsiAS1jY6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bd99d928e3224352f2a3c77f86d4e120_JaffaCakes118

Files

bd99d928e3224352f2a3c77f86d4e120_JaffaCakes118
.exe windows:4 windows x86 arch:x86

395fa8a42c0cc12318dbe1f541578aed

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetCurrentPositionEx
AbortPath
GetBrushOrgEx
ExtTextOutA
CloseFigure
AddFontResourceW
AddFontResourceExA
GetPixel
DeleteObject
AddFontResourceTracking
BeginPath
CreateSolidBrush
GetClipBox
GetBitmapBits
AddFontResourceExW
ClearBrushAttributes
GetPixel
GetPixel
CopyMetaFileA
ClearBitmapAttributes
BeginPath
AddFontResourceExW
DeleteDC
AbortPath
AddFontResourceW
ExcludeClipRect
CancelDC
CloseMetaFile
AddFontResourceA
GetDCOrgEx
AddFontResourceExA
AddFontMemResourceEx
GetClipBox
GetBitmapBits
ClearBitmapAttributes
AddFontMemResourceEx
AbortPath
RestoreDC
CreateSolidBrush
AddFontResourceW
ClearBrushAttributes
CopyMetaFileA
ExcludeClipRect
CloseMetaFile
AddFontResourceA
DeleteDC
GetClipBox
AddFontResourceExA
BitBlt
BeginPath
AddFontResourceTracking
GetCurrentPositionEx
CancelDC
AddFontResourceExW
GetPixel
GetBrushOrgEx
GetPixel
DeleteObject

kernel32

FindFirstFileA
DeleteFileW
ExitThread
ReadConsoleA
OpenFileMappingA
CopyFileExW
GetStdHandle
CopyFileExA
CreateDirectoryA
SetLastError
GetFileTime
GetLastError
FindAtomA
CreateThread
DeleteAtom
ReadFile
GetConsoleMode
GetFileSize
GetCPInfo
Sleep
CopyFileA
GlobalFree
CreateProcessA
GetComputerNameA

user32

CopyIcon
DialogBoxParamA
IsMenu
IsWindow
EndDialog
AppendMenuW
DialogBoxParamW
GetDC
GetCursor
CreateIcon
AppendMenuA
DrawTextA
AlignRects
LoadCursorA
DrawTextW
GetWindowTextA
GetMenu
LoadMenuA
GetDlgItem
GetWindowTextLengthA
CalcMenuBar
BlockInput
InsertMenuA
DrawIconEx
LoadCursorA
GetMenu
AlignRects
DrawIcon
GetCursor
IsWindow
CopyIcon
GetFocus
DrawTextA
GetDC
IsMenu
CopyRect
GetWindowTextLengthA
BlockInput
GetWindowTextA
CreateIcon
CalcMenuBar
DrawTextW
GetDlgItem
GetDlgItem
IsWindow
GetFocus
DrawTextW
CreateIcon
DialogBoxParamW
EndDialog
BlockInput
AlignRects
InsertMenuA
CopyIcon
CloseWindow
LoadCursorA
DialogBoxParamA
GetDC
GetCursor
CopyImage
GetWindowTextA
CalcMenuBar

advapi32

RegQueryInfoKeyW
RegQueryValueExA
RegOpenKeyA
RegEnumKeyExA
RegReplaceKeyA
RegEnumKeyW
RegEnumKeyA
RegDeleteValueA
RegEnumKeyExW
RegQueryValueExW
RegQueryValueW
RegOpenKeyW
RegLoadKeyA
RegCreateKeyW
RegReplaceKeyW
RegEnumValueW
RegDeleteKeyA

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

395fa8a42c0cc12318dbe1f541578aed

Headers

File Characteristics

Imports

gdi32

kernel32

user32

advapi32

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 19KB - Virtual size: 48KB

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 19KB - Virtual size: 48KB