c81bb8f00477e77ba07dd59f51d301bc_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

c81bb8f00477e77ba07dd59f51d301bc_JaffaCakes118
Size

372KB
MD5

c81bb8f00477e77ba07dd59f51d301bc
SHA1

e769f9ea9b42e1527685bf754ff5123c68e405e2
SHA256

1e9752cf174705c28eb7d21509043f88cef61267b3e4aaed734353a7ea251480
SHA512

9e5108de4cf0b96f923c532123e0b6796fc12f952b078c9dd98410b631a2f9e0289735eeac7f282b5e4584d3088ed8c0926aa77685d50b02b44bc573330af74d
SSDEEP

6144:fjlQWcJm9Z/+KPzq9m0rw/8scUrPwYENuox2nBos8clM1gXuQoUJqdLK3Q7Yu803:f+7m//Xzq9m0rw/8UrPTaBWVNZX1zb/E

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c81bb8f00477e77ba07dd59f51d301bc_JaffaCakes118

Files

c81bb8f00477e77ba07dd59f51d301bc_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6272a42a5a1dd35490660e3ab6936269

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetWindowTextLengthA
IsMenu
DrawTextW
LoadCursorA
DialogBoxParamW
DrawIcon
DialogBoxParamA
GetDlgItem
BlockInput
CopyIcon
DrawTextA
AlignRects
GetCursor
GetFocus
CopyImage
CreateIcon
CloseWindow
DrawIconEx

advapi32

RegQueryValueExA
RegDeleteKeyA
RegFlushKey
RegEnumValueW
RegLoadKeyW
RegCreateKeyExA
RegQueryValueW
RegQueryValueA
RegOpenKeyExA
RegEnumKeyExW
RegDeleteKeyW
RegQueryInfoKeyW
RegOpenKeyExW
RegQueryInfoKeyA
RegReplaceKeyW
RegEnumKeyExA
RegReplaceKeyA
RegDeleteValueW
RegCreateKeyExW

comctl32

ImageList_GetImageInfo
ImageList_Read
ImageList_LoadImage
ImageList_DragMove
ImageList_Remove
ImageList_Draw
ImageList_LoadImageA
ImageList_AddMasked
InitCommonControls
ImageList_GetImageRect
ImageList_LoadImageW
ImageList_DrawEx
ImageList_Create
ImageList_DragLeave
ImageList_DrawIndirect
ImageList_Merge
ImageList_GetIcon
ImageList_BeginDrag
ImageList_GetIconSize
ImageList_DragShowNolock

kernel32

OpenFileMappingA
FindFirstFileA
GetCommandLineA
DeleteAtom
GlobalFree
CopyFileExW
GetFileSize
CreateProcessA
FindAtomA
Sleep
GetCPInfo
GetComputerNameA
CreateDirectoryA
CreateThread
WriteFile
GetConsoleMode
GetLastError
CopyFileA
ReadFile
ExitThread

gdi32

AddFontResourceExW
GetPixel
AddFontResourceA
DeleteObject
ExcludeClipRect
AddFontResourceW
ClearBrushAttributes
CopyMetaFileA
CreateSolidBrush
GetCurrentPositionEx
RestoreDC
ExtTextOutA
BitBlt
CloseMetaFile
GetClipBox
GetBrushOrgEx
BeginPath
AddFontMemResourceEx
AbortPath

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 59KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6272a42a5a1dd35490660e3ab6936269

Headers

File Characteristics

Imports

user32

advapi32

comctl32

kernel32

gdi32

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 59KB - Virtual size: 140KB

.reloc Size: - Virtual size: 2KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 59KB - Virtual size: 140KB

.reloc
Size: - Virtual size: 2KB

.rsrc
Size: 1KB - Virtual size: 1KB