bfabb1bcf13521d0ad32b01e30d180a7_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

bfabb1bcf13521d0ad32b01e30d180a7_JaffaCakes118
Size

80KB
MD5

bfabb1bcf13521d0ad32b01e30d180a7
SHA1

dc53fea98d6922646da9323dd9450f2f6f8f6921
SHA256

6460538c4351bbb0c451a0ba30cc88f9ecbd4512c76099bc1fdf00e56e9f3598
SHA512

06eb0c47502a60050d107eb1f5e5dec59e26ba18234b1f955935cd052dbe1a9bdb9e8165fcaa0370b2cd9bfbee9f7f98d29afebba7559b7ce8fa849644acb389
SSDEEP

1536:frWPWV4OvLjjL67Ue+UJE5ENnvMM/qJ5scT94iE:DWPWXDjj2oiJE52H/wX9bE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bfabb1bcf13521d0ad32b01e30d180a7_JaffaCakes118

Files

bfabb1bcf13521d0ad32b01e30d180a7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1ab8e6443e77403969074b324578aff4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CalcMenuBar
GetWindowTextA
GetCursor
GetDlgItem
GetMenu
EndDialog
CloseWindow
AppendMenuA
DrawTextA
AppendMenuW
CopyIcon
CreateIcon
CopyRect
DrawTextW
BlockInput
AlignRects
GetDC
GetFocus
GetDC
CloseWindow
BlockInput
IsMenu
DialogBoxParamA
AppendMenuA
CopyRect
GetDlgItem
GetWindowTextA
DialogBoxParamW
DrawTextA
DrawIcon
LoadCursorA
CopyImage
GetWindowTextLengthA
InsertMenuA
GetMenu
EndDialog
DrawTextW

comctl32

ImageList_GetImageInfo
ImageList_Destroy
ImageList_Create
ImageList_DragShowNolock
ImageList_GetImageRect
InitCommonControls
ImageList_GetDragImage
ImageList_Read
ImageList_EndDrag
ImageList_DrawIndirect
ImageList_Replace
ImageList_LoadImageW
ImageList_LoadImageA
ImageList_DrawEx
ImageList_DragEnter
ImageList_LoadImage
ImageList_AddMasked
ImageList_GetIconSize

kernel32

GetLastError
SetLastError
GetModuleFileNameA
GlobalFree
DeleteFileA
lstrlenA
GlobalAlloc
CloseHandle
FreeLibrary
GetFileAttributesA
Sleep
WideCharToMultiByte
lstrcmpA
GetFileSize
lstrcpynA
GetModuleHandleA
GetFileType
GetCommandLineA
GetStdHandle

advapi32

RegEnumKeyA
RegDeleteKeyW
RegGetKeySecurity
RegEnumValueW
RegQueryValueExW
RegReplaceKeyA
RegReplaceKeyW
RegEnumValueA
RegFlushKey
RegOpenKeyExA
RegOpenKeyExW
RegDeleteValueW
RegDeleteValueA
RegQueryValueW
RegCreateKeyExA
RegEnumKeyExA
RegOpenKeyW
RegQueryInfoKeyW
RegCreateKeyW
RegLoadKeyW

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.mdata
Size: 64KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ

.resr
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1ab8e6443e77403969074b324578aff4

Headers

File Characteristics

Imports

user32

comctl32

kernel32

advapi32

Sections

.text Size: 4KB - Virtual size: 3KB

.mdata Size: 64KB - Virtual size: 60KB

.rdata Size: 4KB - Virtual size: 47KB

.reloc Size: - Virtual size: 1KB

.resr Size: 4KB - Virtual size: 2KB

.text
Size: 4KB - Virtual size: 3KB

.mdata
Size: 64KB - Virtual size: 60KB

.rdata
Size: 4KB - Virtual size: 47KB

.reloc
Size: - Virtual size: 1KB

.resr
Size: 4KB - Virtual size: 2KB