0f3d3ece89816f1eb4e69673b14f1e40_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0f3d3ece89816f1eb4e69673b14f1e40_JaffaCakes118
Size

86KB
MD5

0f3d3ece89816f1eb4e69673b14f1e40
SHA1

adc65115d544b882c8984c281a54091a8c38ace6
SHA256

0e57b400f858cfbbc1bacdf3922deff6bc1370e2e6693357c84c5a0348bda9bd
SHA512

5872657d129c8c31a4e8424b91249b40be7029114d728291b05e78b7c12fd1a75b847344ea3a97cbcaae9df5ff5cac7f14f87cf175341ef878197f279dcb7717
SSDEEP

1536:ftjQJJ03yukR+0ISz7DAj3J5u5Zkbgymsd62Dja:fRQJJ0JwISbIiUbNm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0f3d3ece89816f1eb4e69673b14f1e40_JaffaCakes118

Files

0f3d3ece89816f1eb4e69673b14f1e40_JaffaCakes118
.exe windows:4 windows x86 arch:x86

54ae5cd639ae0bd995213d763a44c8a7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegEnumValueW
RegEnumKeyW
RegEnumKeyExA
RegFlushKey
RegLoadKeyW
RegLoadKeyA
RegQueryInfoKeyA
RegEnumValueA
RegOpenKeyW
RegEnumKeyA
RegDeleteKeyA
RegCreateKeyExW
RegOpenKeyExW
RegQueryValueW
RegDeleteValueW
RegOpenKeyExW
RegEnumKeyExW
RegEnumValueA
RegFlushKey
RegLoadKeyW
RegReplaceKeyW
RegDeleteKeyW
RegOpenKeyW
RegLoadKeyA
RegQueryValueA
RegCreateKeyExA
RegEnumKeyA
RegQueryInfoKeyW
RegCreateKeyExW
RegGetKeySecurity
RegQueryInfoKeyA
RegQueryValueExA
RegQueryInfoKeyA
RegDeleteValueW
RegLoadKeyW
RegReplaceKeyW
RegDeleteKeyW
RegEnumValueA
RegEnumValueW
RegReplaceKeyA
RegEnumKeyW
RegEnumKeyExW
RegQueryValueW
RegDeleteValueA
RegQueryValueA
RegGetKeySecurity
RegOpenKeyA
RegLoadKeyA
RegCreateKeyExA
RegGetKeySecurity
RegReplaceKeyA
RegOpenKeyExW
RegEnumValueA
RegCreateKeyExW
RegQueryValueExW
RegDeleteValueA
RegCreateKeyW
RegOpenKeyExA
RegEnumKeyA
RegQueryInfoKeyW
RegEnumValueW
RegDeleteKeyW
RegQueryInfoKeyA
RegOpenKeyA
RegCreateKeyExW
RegDeleteValueA
RegReplaceKeyW
RegLoadKeyW
RegCreateKeyW
RegQueryInfoKeyW
RegQueryValueW
RegOpenKeyExW
RegCreateKeyExA
RegReplaceKeyA
RegQueryInfoKeyA
RegOpenKeyA
RegFlushKey
RegDeleteValueW
RegOpenKeyW
RegEnumKeyA
RegEnumKeyExW
RegQueryValueExW

kernel32

GetCurrentProcess
GetOEMCP
DeleteAtom
GlobalFree
GetCPInfo
GetStdHandle
CreateProcessA
GetComputerNameA
CreateThread
DeleteFileW
GetCommandLineA
ExitThread
DeleteFileA
GetFileTime
GetUserDefaultLangID
GetCurrentThreadId
GetCurrentProcessId
GetFileSize
FindFirstFileA
GetOEMCP
ExitProcess
GetStdHandle
CreateProcessA
DeleteFileA
GetConsoleMode
GetConsoleOutputCP
GetCurrentThreadId
GetComputerNameA
GetCurrentProcessId
CopyFileW
GetCPInfo
GetCurrentProcess
GetLastError
CreateThread
GetCommandLineA
OpenFile
GetUserDefaultLangID
GetComputerNameA
GetCurrentThread
GetFileTime
GetFileSize
GetUserDefaultLCID
GetCPInfo
CreateDirectoryA
FindFirstFileA
ExitProcess
Sleep
GetLastError
GetStdHandle
GlobalFree
GetCurrentProcess
CreateThread
GetFileTime
GetStdHandle
CopyFileW
GetCurrentThread
ExitThread
CreateDirectoryA
DeleteFileA
FindFirstFileA
CreateThread
OpenFile
GetCPInfo
GetComputerNameA
GetCommandLineA
GetFileSize
GetConsoleOutputCP
CreateDirectoryA
GetCPInfo
GetUserDefaultLangID
DeleteFileA
CreateThread
OpenFile
GetCurrentProcessId
GetLastError
GetCommandLineA
GetStdHandle
CreateProcessA
Sleep
GetCurrentProcess

Sections

.itext
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.edata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.init
Size: 43KB - Virtual size: 379KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 571B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

54ae5cd639ae0bd995213d763a44c8a7

Headers

File Characteristics

Imports

advapi32

kernel32

Sections

.itext Size: 30KB - Virtual size: 29KB

.edata Size: 4KB - Virtual size: 4KB

.init Size: 43KB - Virtual size: 379KB

.idata Size: 5KB - Virtual size: 5KB

.data Size: 512B - Virtual size: 436B

.rsrc Size: 1024B - Virtual size: 571B

.itext
Size: 30KB - Virtual size: 29KB

.edata
Size: 4KB - Virtual size: 4KB

.init
Size: 43KB - Virtual size: 379KB

.idata
Size: 5KB - Virtual size: 5KB

.data
Size: 512B - Virtual size: 436B

.rsrc
Size: 1024B - Virtual size: 571B