02257382624308558544c590a1d19943_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

02257382624308558544c590a1d19943_JaffaCakes118
Size

165KB
MD5

02257382624308558544c590a1d19943
SHA1

fff2160e1e25d6e6a89444d94c0fae00a9d8f311
SHA256

1ef495c7e408862412920b749c244ba2fc0a94c88820e4ce152132c2d9b9b2f8
SHA512

a5f2e4d873e35217f7d473fa625c527859cd570db4fd9e09c24edd45dd20b5afae58d73b8f105bf165c9855715561964e5114c9693ab134a531bece659b5b14f
SSDEEP

3072:BgvU96es7lHh7+CNC3XK+yxdn8sfePF7r4HXfPTkHQ1sdO04H8mq:BbUB7+pZyxarPlryPTEOxq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
02257382624308558544c590a1d19943_JaffaCakes118

Files

02257382624308558544c590a1d19943_JaffaCakes118
.exe windows:4 windows x86 arch:x86

68752317372bc15d5372ddf6ee470391

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegQueryInfoKeyA
RegEnumValueA
RegQueryValueExW
RegQueryInfoKeyW
RegEnumKeyA
RegEnumKeyW
RegDeleteValueA
RegDeleteValueW
RegFlushKey
RegReplaceKeyW
RegOpenKeyExA
RegQueryValueExA
RegOpenKeyExW
RegOpenKeyW
RegLoadKeyA
RegCreateKeyExA
RegGetKeySecurity
RegEnumKeyExW
RegQueryValueW
RegReplaceKeyA
RegDeleteKeyA
RegDeleteKeyW
RegCreateKeyW
RegLoadKeyW
RegOpenKeyA
RegCreateKeyExW
RegEnumKeyExA
RegQueryValueA
RegEnumValueW
RegQueryValueA
RegQueryValueExA
RegEnumKeyExA
RegOpenKeyW
RegDeleteKeyW
RegDeleteKeyA
RegOpenKeyExW
RegLoadKeyA
RegEnumValueW
RegQueryValueExW
RegEnumKeyExW
RegCreateKeyExW
RegLoadKeyW
RegQueryValueW
RegReplaceKeyW
RegFlushKey
RegDeleteValueA
RegOpenKeyExA
RegReplaceKeyA
RegEnumKeyA
RegDeleteValueW
RegEnumKeyW
RegQueryInfoKeyW
RegCreateKeyW
RegOpenKeyA
RegEnumValueA
RegQueryInfoKeyA
RegGetKeySecurity
RegCreateKeyExA

user32

AlignRects
GetWindowTextA
DrawTextW
EndDialog
CopyIcon
CopyImage
GetCursor
AppendMenuA
CloseWindow
IsWindow
DialogBoxParamW
GetDC
GetWindowTextLengthA
IsMenu
GetMenu
LoadMenuA
AppendMenuW
DrawIcon
BlockInput
GetDlgItem
LoadCursorA
GetFocus
CalcMenuBar
InsertMenuA
CreateIcon
CopyRect
DrawTextA
DialogBoxParamA
DrawIconEx

kernel32

GetLastError
ExitProcess
GetLastError
GetStringTypeW
GetLastError
HeapFree
GetLastError
lstrcpynA
GetLastError
GetFileSize
GetLastError
GetLastError
GetLastError
GetModuleHandleA
GetLastError
lstrlenA

Sections

.tdxt
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.raata
Size: 142KB - Virtual size: 141KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edaaa
Size: 11KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdldc
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idada
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

68752317372bc15d5372ddf6ee470391

Headers

File Characteristics

Imports

advapi32

user32

kernel32

Sections

.tdxt Size: 6KB - Virtual size: 6KB

.raata Size: 142KB - Virtual size: 141KB

.edaaa Size: 11KB - Virtual size: 56KB

.rdldc Size: 512B - Virtual size: 1KB

.idada Size: 1024B - Virtual size: 1KB

.tdxt
Size: 6KB - Virtual size: 6KB

.raata
Size: 142KB - Virtual size: 141KB

.edaaa
Size: 11KB - Virtual size: 56KB

.rdldc
Size: 512B - Virtual size: 1KB

.idada
Size: 1024B - Virtual size: 1KB