de68a118bce3ab9915f2ae3a3088a4ec_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

de68a118bce3ab9915f2ae3a3088a4ec_JaffaCakes118
Size

48KB
MD5

de68a118bce3ab9915f2ae3a3088a4ec
SHA1

f1d0dcf45762692f21bfd08ea21d1b8187067cae
SHA256

321f3a7a9652bf8dfb99d44b285bbdfb4acc1c065d7682495e7d49f14e1b931e
SHA512

9ef5c091dbc761b4f2d363db0b1c67b5163184578941a043fdfa5c195e491fcf154f93f85e88ad8f0d91dcee8f9b880f92113ebae776180ba3b8c6717d921ec2
SSDEEP

384:Rw4smM4YoGIrwZQzBsSlIuvG/FqK5hfiBc7JvjP2onGXPtScg27H:W+M4YlhQz2uuf5FiBQJvL2oatScg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
de68a118bce3ab9915f2ae3a3088a4ec_JaffaCakes118

Files

de68a118bce3ab9915f2ae3a3088a4ec_JaffaCakes118
.exe windows:4 windows x86 arch:x86

93e16c6ea30e7083aba8af3ec5578603

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_Replace
ImageList_Read
ImageList_GetImageCount
ImageList_GetImageInfo
InitCommonControls
ImageList_Destroy
ImageList_Copy
ImageList_DragMove
ImageList_LoadImage
ImageList_GetImageRect
ImageList_LoadImageW
ImageList_GetIconSize
ImageList_Merge
ImageList_DrawIndirect
ImageList_Remove
ImageList_ReplaceIcon
ImageList_EndDrag
ImageList_DragLeave
ImageList_DrawEx
ImageList_Draw

gdi32

AddFontResourceW
AddFontResourceA
DeleteObject
RestoreDC
ClearBrushAttributes
ExtTextOutA
AddFontResourceExA
CreateSolidBrush
CopyMetaFileA
ClearBitmapAttributes
GetPixel
GetDCOrgEx
GetPixel
GetBitmapBits
BeginPath
GetCurrentPositionEx
AbortPath
AddFontMemResourceEx
GetBrushOrgEx

kernel32

GetStringTypeW
GetCommandLineA
GetStringTypeA
WideCharToMultiByte
GetLastError
GetModuleHandleA
GetModuleFileNameA
lstrcpyA
lstrlenA
lstrcpynA
SetLastError
GetLocalTime
GlobalFree
HeapFree
GetFileAttributesA
GetFullPathNameA
GlobalAlloc
GetStdHandle
lstrcmpiA

user32

LoadCursorA
CalcMenuBar
GetMenu
InsertMenuA
DrawTextW
DrawIcon
LoadMenuA
DrawTextA
DialogBoxParamW
CopyImage
CreateIcon
AppendMenuW
AppendMenuA
CloseWindow
BlockInput
GetCursor
IsMenu
DialogBoxParamA

advapi32

RegOpenKeyExA
RegLoadKeyW
RegEnumValueW
RegFlushKey
RegDeleteKeyW
RegGetKeySecurity
RegQueryValueA
RegQueryInfoKeyA
RegEnumKeyA
RegOpenKeyExW
RegQueryValueExW
RegEnumKeyExW
RegCreateKeyW
RegLoadKeyA
RegReplaceKeyA
RegReplaceKeyW
RegOpenKeyA
RegQueryValueExA
RegQueryInfoKeyW

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 944B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

93e16c6ea30e7083aba8af3ec5578603

Headers

File Characteristics

Imports

comctl32

gdi32

kernel32

user32

advapi32

Sections

.text Size: 8KB - Virtual size: 4KB

.data Size: 28KB - Virtual size: 24KB

.rdata Size: 4KB - Virtual size: 56KB

.reloc Size: - Virtual size: 1KB

.rsrc Size: 4KB - Virtual size: 944B

.text
Size: 8KB - Virtual size: 4KB

.data
Size: 28KB - Virtual size: 24KB

.rdata
Size: 4KB - Virtual size: 56KB

.reloc
Size: - Virtual size: 1KB

.rsrc
Size: 4KB - Virtual size: 944B