c86ae31414200eb3fa9510582a5480cb_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

c86ae31414200eb3fa9510582a5480cb_JaffaCakes118
Size

953KB
MD5

c86ae31414200eb3fa9510582a5480cb
SHA1

184bfe2b205092d0d56a63357c70ec5b0ff3f486
SHA256

c1b66da4719d15a5ee99cf16ab0f21242a92a84ad1ebf7d52d754159709570c0
SHA512

94a97b8383e7dff8205b28a8e677035b0bccf66b7e1915c38ce96d4bf51d4ea53b1ccdaa53e8e270298873139ec62ef0d3f51abbf71782a422137510538555d2
SSDEEP

24576:tII/g2meo+Bcd2h1eN265wS03NX3tDMh3Bs/RUo:5g2sf2h1awS03fMh3Bieo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c86ae31414200eb3fa9510582a5480cb_JaffaCakes118

Files

c86ae31414200eb3fa9510582a5480cb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

dbfad5278ccbe5567cec3dee2775b448

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CopyFileExA
FindAtomA
GetFileSize
DeleteAtom
GetFileTime
GetCPInfo
WriteFile
GetComputerNameA
Sleep
CopyFileW
CreateThread
CopyFileA
GetConsoleMode
GetLastError
ReadConsoleA
GetStdHandle
CreateProcessA
DeleteFileW
ReadFile
OpenFile
CopyFileExW
OpenFileMappingA
FindFirstFileA
ExitThread
GlobalFree
GetCommandLineA
SetLastError
DeleteFileA
CreateDirectoryA
GetFileSize
ReadFile
GetConsoleMode
FindAtomA
DeleteAtom
DeleteFileW
GetCPInfo
SetLastError
WriteFile
GetLastError
GetFileTime
CopyFileW
ExitThread
CreateProcessA
ReadConsoleA
Sleep
CreateThread
OpenFileMappingA
GetStdHandle
OpenFile
GetCommandLineA
CopyFileExW
GlobalFree
CopyFileA
CreateDirectoryA
CopyFileExA
GetComputerNameA
DeleteFileA
FindFirstFileA
DeleteFileA
CopyFileA
GetLastError
ReadFile
GetConsoleMode
DeleteFileW
CreateProcessA
FindAtomA
CreateDirectoryA
DeleteAtom
CreateThread
GetFileTime
GlobalFree
GetComputerNameA
CopyFileExA
CopyFileExW
SetLastError
GetStdHandle
GetFileSize
GetCPInfo
Sleep
CopyFileW
ExitThread
OpenFileMappingA
ReadConsoleA
OpenFile
FindFirstFileA
WriteFile
GetCommandLineA

advapi32

RegEnumKeyW
RegQueryValueA
RegOpenKeyExA
RegOpenKeyA
RegFlushKey
RegOpenKeyExW
RegQueryValueExA
RegCreateKeyW
RegOpenKeyW
RegQueryInfoKeyW
RegEnumValueW
RegReplaceKeyA
RegEnumKeyExW
RegReplaceKeyW
RegDeleteValueA
RegQueryInfoKeyA
RegLoadKeyW
RegDeleteKeyW
RegLoadKeyA
RegEnumKeyExA
RegCreateKeyExA
RegQueryValueExW
RegCreateKeyExW
RegDeleteValueW
RegDeleteKeyA
RegEnumValueA
RegGetKeySecurity
RegEnumKeyA
RegQueryValueW

comctl32

ImageList_LoadImageA
ImageList_Replace
ImageList_GetDragImage
ImageList_GetImageRect
ImageList_BeginDrag
ImageList_AddMasked
InitCommonControls
ImageList_Destroy
ImageList_LoadImageW
ImageList_LoadImage
ImageList_Draw
ImageList_GetIconSize
ImageList_GetImageCount
ImageList_Merge
ImageList_DragEnter
ImageList_DrawEx
ImageList_DragLeave
ImageList_GetIcon
ImageList_EndDrag
ImageList_Read
ImageList_GetImageInfo
ImageList_Copy
ImageList_Create
ImageList_DrawIndirect
ImageList_DragMove
ImageList_Remove
ImageList_ReplaceIcon
ImageList_AddIcon
ImageList_DragShowNolock

user32

GetMenu
DrawTextW
AppendMenuA
GetDlgItem
GetDC
DrawIconEx
InsertMenuA
GetWindowTextA
DialogBoxParamA
CopyIcon
EndDialog
GetWindowTextLengthA
CalcMenuBar
DialogBoxParamW
CloseWindow
CreateIcon
IsMenu
DrawTextA
LoadCursorA
GetFocus
GetCursor
AlignRects
DrawIcon
IsWindow
CopyImage
LoadMenuA
CopyRect
BlockInput
AppendMenuW

gdi32

AbortPath
AddFontMemResourceEx
GetBitmapBits
AddFontResourceA
CopyMetaFileA
ExtTextOutA
SetTextColor
AddFontResourceExW
AddFontResourceExA
BitBlt
AddFontResourceW
GetPixel
BeginPath
CloseFigure
GetDCOrgEx
GetPixel
AddFontResourceTracking
DeleteDC
CreateSolidBrush
GetCurrentPositionEx
CancelDC
ExcludeClipRect
ClearBrushAttributes
GetClipBox
CloseMetaFile
DeleteObject
RestoreDC
GetBrushOrgEx
ClearBitmapAttributes
ClearBitmapAttributes
CreateSolidBrush
AddFontResourceA
AddFontResourceExA
DeleteDC
CancelDC
ExcludeClipRect
AddFontMemResourceEx
GetCurrentPositionEx
RestoreDC
AbortPath
CloseMetaFile
DeleteObject
CloseFigure
AddFontResourceW
GetBitmapBits
GetDCOrgEx
GetPixel
AddFontResourceExW
GetPixel
BitBlt
ClearBrushAttributes
CopyMetaFileA
BeginPath
AddFontResourceTracking
GetClipBox
SetTextColor
ExtTextOutA
GetBrushOrgEx
CancelDC
DeleteDC
AddFontResourceA
GetBitmapBits
GetPixel
AddFontResourceExW
RestoreDC
ClearBitmapAttributes
GetClipBox
GetBrushOrgEx
CloseMetaFile
GetCurrentPositionEx
ClearBrushAttributes
GetDCOrgEx
CopyMetaFileA
AbortPath
AddFontResourceExA
AddFontMemResourceEx
ExtTextOutA
BitBlt
DeleteObject
AddFontResourceW
BeginPath
SetTextColor
GetPixel
ExcludeClipRect
AddFontResourceTracking
CreateSolidBrush
CloseFigure

Sections

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 915KB - Virtual size: 914KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 7KB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dbfad5278ccbe5567cec3dee2775b448

Headers

File Characteristics

Imports

kernel32

advapi32

comctl32

user32

gdi32

Sections

.text Size: 23KB - Virtual size: 22KB

.data Size: 915KB - Virtual size: 914KB

.tls Size: 2KB - Virtual size: 4KB

.rdata Size: 4KB - Virtual size: 5KB

.idata Size: 7KB - Virtual size: 1.7MB

.text
Size: 23KB - Virtual size: 22KB

.data
Size: 915KB - Virtual size: 914KB

.tls
Size: 2KB - Virtual size: 4KB

.rdata
Size: 4KB - Virtual size: 5KB

.idata
Size: 7KB - Virtual size: 1.7MB