0f39ce1ec81f942fdca5fe45df9fa478_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0f39ce1ec81f942fdca5fe45df9fa478_JaffaCakes118
Size

238KB
MD5

0f39ce1ec81f942fdca5fe45df9fa478
SHA1

980ab1f2173e0d0aa60f8609cd8d02678c738e25
SHA256

e1f82b9a5b4392fd90b4f23dbc4a458944d050baf2eeb82714e76a4934ca4105
SHA512

f9f65e33e79065fa9fb973b77d24be3db2c0d19407f8b507c7b928e3b310356adb1a4a742434d46df6998d0067085802c6678d6542d5b4fdf75b3ae4a9d18d96
SSDEEP

6144:qTZeGsozbEg0qRqSaXgLS+h8FKXUwJmik+zjH3u6P:qFeGswbEWaXgLB8ZVv+zjXuE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0f39ce1ec81f942fdca5fe45df9fa478_JaffaCakes118

Files

0f39ce1ec81f942fdca5fe45df9fa478_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5614174034c384cc64c01049a1e54620

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegQueryValueA
RegQueryValueExA
RegEnumValueW
RegDeleteKeyW
RegOpenKeyExA
RegEnumValueA
RegQueryInfoKeyW
RegOpenKeyW
RegCreateKeyExW
RegFlushKey
RegEnumKeyW
RegQueryInfoKeyA
RegEnumKeyExW
RegEnumKeyA
RegOpenKeyExW
RegReplaceKeyW
RegDeleteKeyA
RegQueryValueExW
RegEnumKeyExA
RegDeleteValueW
RegCreateKeyW
RegLoadKeyW
RegReplaceKeyA
RegLoadKeyA
RegOpenKeyA
RegCreateKeyExA
RegDeleteValueA
RegGetKeySecurity
RegQueryValueW
RegEnumKeyW
RegCreateKeyExA
RegFlushKey
RegOpenKeyA
RegDeleteValueW
RegEnumValueW
RegDeleteKeyA
RegLoadKeyA
RegEnumKeyExA
RegReplaceKeyA
RegEnumKeyExW
RegLoadKeyW
RegEnumValueA
RegEnumKeyA
RegCreateKeyW
RegDeleteKeyW
RegQueryValueA
RegGetKeySecurity
RegOpenKeyW
RegQueryValueExA
RegReplaceKeyW
RegCreateKeyExW
RegDeleteValueA
RegOpenKeyExA
RegQueryInfoKeyW
RegOpenKeyExW
RegQueryValueW
RegQueryValueExW
RegQueryInfoKeyA

kernel32

GetCommandLineA
lstrcmpA
GetCommandLineA
DeleteFileA
GetCommandLineA
GetStringTypeW
GetCommandLineA
FreeLibrary
GetCommandLineA
HeapFree
GetCommandLineA
GetFileType
GetCommandLineA
lstrcpynA
GetCommandLineA
WideCharToMultiByte
GetCommandLineA
GlobalAlloc

user32

GetDC
GetDlgItem
DialogBoxParamW
GetWindowTextA
AppendMenuW
InsertMenuA
DrawTextA
CopyIcon
LoadCursorA
AlignRects
DrawIconEx
GetCursor
LoadMenuA
GetWindowTextLengthA
GetMenu
DialogBoxParamA
CopyRect
CreateIcon
CloseWindow
BlockInput
DrawTextW
IsWindow
CopyImage
DrawIcon
EndDialog
AppendMenuA
CalcMenuBar
IsMenu
GetFocus
CreateIcon
IsMenu
GetMenu
DrawTextW
DrawIcon
CalcMenuBar
CopyRect
IsWindow
DialogBoxParamA
GetDlgItem
CloseWindow
AppendMenuA
InsertMenuA
GetWindowTextA
CopyIcon
AppendMenuW
AlignRects
GetDC
BlockInput
GetFocus
GetCursor
DrawIconEx
GetWindowTextLengthA
CopyImage
LoadCursorA
LoadMenuA
EndDialog
DialogBoxParamW
DrawTextA

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.d80a
Size: 215KB - Virtual size: 214KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rd2ta
Size: 5KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.r0loc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rs3c
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5614174034c384cc64c01049a1e54620

Headers

File Characteristics

Imports

advapi32

kernel32

user32

Sections

.text Size: 10KB - Virtual size: 10KB

.d80a Size: 215KB - Virtual size: 214KB

.rd2ta Size: 5KB - Virtual size: 47KB

.r0loc Size: 2KB - Virtual size: 2KB

.rs3c Size: 1024B - Virtual size: 2KB

.text
Size: 10KB - Virtual size: 10KB

.d80a
Size: 215KB - Virtual size: 214KB

.rd2ta
Size: 5KB - Virtual size: 47KB

.r0loc
Size: 2KB - Virtual size: 2KB

.rs3c
Size: 1024B - Virtual size: 2KB