be6b1dc0937963063b76387a6094e64f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

be6b1dc0937963063b76387a6094e64f_JaffaCakes118
Size

100KB
MD5

be6b1dc0937963063b76387a6094e64f
SHA1

66754c2e7a7fe037070da20de34721ce3b0836d2
SHA256

9306c0b7fa4ea6aa5c6d94fc29d928c031064e985003ee843ead45fc73479e9c
SHA512

776065d1e50cfb6d2f7938df34827473f491ae5535cc830ac2e84394e3fa0dfca7276576deeeaf2f6c2a46734a3f720104a30ff8fad5aa7dec3577c90c500bba
SSDEEP

1536:tchT9ku2fwROmDTR18sB6A1LO2bdjldZYwTwNClZHZEoT3Ynqj+jLLltM4u:X4RpDndZJwclZH6g3YnTLJtM1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
be6b1dc0937963063b76387a6094e64f_JaffaCakes118

Files

be6b1dc0937963063b76387a6094e64f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e551dcf0a395663559222b2fcec3ab10

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DialogBoxParamW
LoadMenuA
IsMenu
AppendMenuW
GetDC
BlockInput
DrawTextW
DialogBoxParamA
LoadCursorA
GetFocus
CloseWindow
GetDlgItem
IsWindow
AlignRects
GetCursor
GetWindowTextLengthA
CopyIcon
EndDialog

kernel32

DeleteAtom
CreateProcessA
GetFileSize
FindFirstFileA
DeleteFileA
ReadConsoleA
CopyFileA
GetComputerNameA
ExitThread
CopyFileExW
GetCommandLineA
OpenFile
Sleep
GlobalFree
FindAtomA
GetLastError
CopyFileW
CreateThread
CopyFileA
WriteFile
GetCommandLineA
GetCPInfo
GetFileTime
DeleteFileW
CopyFileExW
CreateDirectoryA
GlobalFree
DeleteFileA
GetComputerNameA
GetConsoleMode
Sleep
ReadFile
FindAtomA
FindFirstFileA
CopyFileW
OpenFileMappingA
Sleep
CreateThread
GetFileSize
CreateProcessA
GetCommandLineA
GetLastError
ReadFile
ExitThread
GetConsoleMode
CreateDirectoryA
GetStdHandle
GetCPInfo
GlobalFree
GetComputerNameA
FindAtomA
CopyFileExA
ReadConsoleA

gdi32

GetPixel
AddFontResourceTracking
AddFontMemResourceEx
ClearBitmapAttributes
CreateSolidBrush
GetPixel
BeginPath
RestoreDC
AddFontResourceA
AddFontResourceExW
DeleteDC
CloseMetaFile
ClearBrushAttributes
DeleteObject
GetClipBox
GetCurrentPositionEx
AbortPath
GetDCOrgEx
ExtTextOutA
CloseFigure
GetPixel
GetDCOrgEx
AddFontResourceExA
AddFontMemResourceEx
AddFontResourceW
ClearBrushAttributes
GetBitmapBits
CreateSolidBrush
CopyMetaFileA
GetCurrentPositionEx
RestoreDC
GetPixel
DeleteObject
AbortPath
GetDCOrgEx
AddFontResourceW
AddFontResourceExW
CreateSolidBrush
CopyMetaFileA
GetClipBox
GetPixel
GetCurrentPositionEx
DeleteDC
GetBrushOrgEx
AddFontResourceA
CloseMetaFile
CancelDC
AddFontResourceTracking
GetPixel
AddFontMemResourceEx
BitBlt

advapi32

RegQueryInfoKeyA
RegEnumKeyW
RegDeleteKeyW
RegCreateKeyW
RegLoadKeyW
RegOpenKeyA
RegQueryValueW
RegOpenKeyExW
RegOpenKeyExA
RegCreateKeyExW
RegEnumKeyExA
RegQueryInfoKeyW
RegDeleteValueW
RegGetKeySecurity
RegOpenKeyW

comctl32

CreateToolbar
DrawStatusText
DllInstall
MenuHelp
ImageList_BeginDrag
CreateUpDownControl
ImageList_DragLeave
CreateMappedBitmap
CreateStatusWindowA
ImageList_DragEnter
DrawStatusTextA
ImageList_Create
CreateToolbarEx
ImageList_AddMasked
InitCommonControls

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 90KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e551dcf0a395663559222b2fcec3ab10

Headers

File Characteristics

Imports

user32

kernel32

gdi32

advapi32

comctl32

Sections

.text Size: 4KB - Virtual size: 4KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 90KB - Virtual size: 103KB

.text
Size: 4KB - Virtual size: 4KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 90KB - Virtual size: 103KB