036604c4ccede63b9f7b524b0f80dff6_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

036604c4ccede63b9f7b524b0f80dff6_JaffaCakes118
Size

276KB
MD5

036604c4ccede63b9f7b524b0f80dff6
SHA1

3d8e4368df15c93012837b6fb84ade4d9af1042b
SHA256

dc6b1558ba7c4ef6a946bd41a14dec258f1db89e411623421d4e44870035d18d
SHA512

8338a6d6b57a789ae76d11b6cb6e189e93a2b099b3ca4bcb530e8513d288baff0ecf3e06deb076e3b81e7a1336a4338c840c177a0ae022e040528eb78f3d3a9a
SSDEEP

6144:MdAjEProRr8Yrv23ONgMiVImrgn13Re+6G5V527:MqRr8bSg1u1A+Z4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
036604c4ccede63b9f7b524b0f80dff6_JaffaCakes118

Files

036604c4ccede63b9f7b524b0f80dff6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b55ff1f2cea652e46abf712c8cb6d7a2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CopyRect
GetWindowTextLengthA
GetFocus
AlignRects
GetWindowTextA
LoadMenuA
BlockInput
CopyImage
CloseWindow
DrawIcon
CalcMenuBar
LoadCursorA
CreateIcon
GetMenu
CopyRect
GetFocus
EndDialog
DialogBoxParamW
AppendMenuA
AlignRects
CloseWindow
DrawIcon
AppendMenuW
GetCursor
IsWindow

advapi32

RegReplaceKeyA
RegEnumValueW
RegQueryValueA
RegFlushKey
RegEnumKeyExA
RegDeleteValueA
RegCreateKeyExW
RegCreateKeyExA
RegDeleteKeyA
RegQueryValueW
RegReplaceKeyW
RegQueryValueExW
RegCreateKeyW
RegQueryInfoKeyA
RegOpenKeyA
RegDeleteValueW
RegEnumKeyW
RegEnumKeyA
RegOpenKeyExA
RegEnumKeyA
RegDeleteKeyA
RegOpenKeyExA
RegReplaceKeyA
RegLoadKeyA
RegGetKeySecurity
RegQueryInfoKeyW
RegOpenKeyA
RegEnumKeyW
RegEnumValueA
RegCreateKeyW
RegLoadKeyW
RegOpenKeyW
RegOpenKeyExW
RegDeleteValueA
RegCreateKeyExW
RegQueryValueExA
RegQueryInfoKeyA
RegDeleteKeyW
RegDeleteValueW
RegCreateKeyW
RegOpenKeyExW
RegReplaceKeyA
RegOpenKeyA
RegLoadKeyA
RegEnumKeyA
RegQueryValueW
RegCreateKeyExW
RegEnumValueW
RegDeleteKeyA
RegQueryValueExA
RegLoadKeyW
RegEnumKeyW
RegDeleteValueA
RegCreateKeyExA

kernel32

DeleteFileW
GetCommandLineA
GetOEMCP
GetStdHandle
DeleteFileA
GetBinaryTypeW
GetComputerNameA
GetConsoleOutputCP
OpenFile
GetProcessHeap
FindFirstFileW
GetExitCodeProcess
FindNextFileA
GetExitCodeThread
FreeConsole
FindNextFileW
GetBinaryTypeA
GetComputerNameA
CreateDirectoryA
GetConsoleOutputCP
FindFirstFileA
GetConsoleCP
FreeConsole
GetProcessHeap
FindFirstFileW
GlobalFree
GetFileSize
GetExitCodeThread
GetComputerNameW
GetStdHandle
GetACP
GetConsoleMode
FindNextFileA
CreateDirectoryA
GetComputerNameW
GetConsoleCP
GetOEMCP
GetLastError
GetExitCodeThread
GetBinaryTypeA
FindNextFileA
GetComputerNameA
OpenFile
DeleteFileA
GetStdHandle

Sections

.itext
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.edata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 232KB - Virtual size: 507KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b55ff1f2cea652e46abf712c8cb6d7a2

Headers

File Characteristics

Imports

user32

advapi32

kernel32

Sections

.itext Size: 26KB - Virtual size: 26KB

.edata Size: 9KB - Virtual size: 9KB

.bss Size: 232KB - Virtual size: 507KB

.idata Size: 3KB - Virtual size: 3KB

.data Size: 3KB - Virtual size: 3KB

.itext
Size: 26KB - Virtual size: 26KB

.edata
Size: 9KB - Virtual size: 9KB

.bss
Size: 232KB - Virtual size: 507KB

.idata
Size: 3KB - Virtual size: 3KB

.data
Size: 3KB - Virtual size: 3KB