f4e67befbba5f2ec599579ca3d7f9dab_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f4e67befbba5f2ec599579ca3d7f9dab_JaffaCakes118
Size

96KB
MD5

f4e67befbba5f2ec599579ca3d7f9dab
SHA1

3f6bf69cc8612be151f72eeadeb2320d0e455a11
SHA256

fbcadc6765f5e786f0284abfd25320f146fb3ec6eda6f3ba29a7ed2698c9f0f0
SHA512

8945381f00246c0446fd037d215122726a28461941eaba04d233c7fbfba7170c6c0d14ac30a8f87050877c14f138ef49b31b3eec7194571e11baeda987b33ede
SSDEEP

1536:MOZHUQcbsXjANY3zPpaJGRE+aj/RqPFZcoZr+VI29Gmr6T2:M4UQosXGY3zP5RE3/cVd3OH6T

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f4e67befbba5f2ec599579ca3d7f9dab_JaffaCakes118

Files

f4e67befbba5f2ec599579ca3d7f9dab_JaffaCakes118
.exe windows:4 windows x86 arch:x86

36577cc25ce58114ce8bcca47ff25f5e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

IsMenu
CloseWindow
AlignRects
DrawIconEx
IsWindow
GetCursor
CopyImage
DrawTextW
DialogBoxParamA
EndDialog
CalcMenuBar
GetMenu
GetDC
DrawIcon
AppendMenuA
CopyRect
GetDlgItem
GetWindowTextLengthA

kernel32

GetStringTypeA
GetLocalTime
DeleteFileA
GetFileAttributesA
GlobalFree
lstrlenA
FreeLibrary
GetCommandLineA
CloseHandle
GetStdHandle
GetStringTypeW
GetModuleHandleA
GetCPInfo
SetLastError
GetFileSize
lstrcatA
GetModuleFileNameA
GetFileType
GetLastError

comctl32

ImageList_LoadImage
ImageList_Replace
ImageList_Draw
ImageList_Destroy
ImageList_AddMasked
ImageList_LoadImageW
ImageList_DragMove
ImageList_BeginDrag
ImageList_Copy
ImageList_GetImageInfo
ImageList_LoadImageA
ImageList_GetImageRect
ImageList_DragLeave
ImageList_Read
ImageList_ReplaceIcon
ImageList_Create
ImageList_GetIcon
ImageList_EndDrag

advapi32

RegEnumKeyExW
RegFlushKey
RegEnumValueA
RegDeleteKeyW
RegEnumKeyA
RegEnumKeyExA
RegCreateKeyW
RegOpenKeyW
RegQueryInfoKeyW
RegDeleteValueW
RegEnumKeyW
RegOpenKeyExA
RegOpenKeyExW
RegLoadKeyA
RegCreateKeyExA
RegOpenKeyA
RegQueryValueExA
RegReplaceKeyA

gdi32

DeleteDC
GetBrushOrgEx
GetBitmapBits
AddFontMemResourceEx
BeginPath
AddFontResourceExW
CopyMetaFileA
RestoreDC
ClearBitmapAttributes
CloseFigure
AbortPath
AddFontResourceA
GetPixel
ClearBrushAttributes
ExcludeClipRect
GetDCOrgEx
CancelDC
ExtTextOutA
AddFontResourceW
GetPixel

Sections

.text
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

36577cc25ce58114ce8bcca47ff25f5e

Headers

File Characteristics

Imports

user32

kernel32

comctl32

advapi32

gdi32

Sections

.text Size: 4KB - Virtual size: 1KB

.data Size: 68KB - Virtual size: 67KB

.rdata Size: 4KB - Virtual size: 9KB

.edata Size: - Virtual size: 3KB

.rsrc Size: 16KB - Virtual size: 16KB

.text
Size: 4KB - Virtual size: 1KB

.data
Size: 68KB - Virtual size: 67KB

.rdata
Size: 4KB - Virtual size: 9KB

.edata
Size: - Virtual size: 3KB

.rsrc
Size: 16KB - Virtual size: 16KB