0f1761df022012909727feaece85fb4d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0f1761df022012909727feaece85fb4d_JaffaCakes118
Size

254KB
MD5

0f1761df022012909727feaece85fb4d
SHA1

d2bc1328ae33ae81f1d8ad32cd36b2a6d1c1b123
SHA256

f6f5ada1916c0a2a00d1d03f0a83519d41335f0a5bd5d5cb5adfce63f0d0d7c3
SHA512

4ddf7b521714d5359923349721b1eceedb3c133075b9c47b361f77747b215c10eac7aef47c605b55d30ff266ebdb0b68b4dffded2cb9b9fd42324d1df0fa6484
SSDEEP

6144:PZIAQBrxprodBChrCbrTnagFxcDRoLILRioxu:sjodB6rCbnagzgAS7c

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0f1761df022012909727feaece85fb4d_JaffaCakes118

Files

0f1761df022012909727feaece85fb4d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

69cacf5ffcd6abb6b576cb0b07cf262c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegLoadKeyA
RegQueryValueExW
RegEnumKeyA
RegEnumKeyW
RegQueryValueA
RegQueryValueW
RegCreateKeyW
RegReplaceKeyA
RegEnumKeyExA
RegDeleteValueW
RegQueryInfoKeyA
RegGetKeySecurity
RegLoadKeyW
RegOpenKeyA
RegOpenKeyExW
RegEnumValueW
RegCreateKeyExW
RegFlushKey
RegEnumValueA
RegEnumKeyExW
RegDeleteValueA
RegDeleteKeyA
RegDeleteKeyW
RegOpenKeyExA
RegCreateKeyExA
RegQueryInfoKeyW
RegReplaceKeyW
RegOpenKeyW
RegQueryValueExA
RegDeleteKeyW
RegEnumKeyExW
RegCreateKeyExA
RegFlushKey
RegReplaceKeyW
RegEnumKeyExA
RegReplaceKeyA
RegEnumKeyA
RegOpenKeyExW
RegDeleteValueW
RegDeleteValueA
RegOpenKeyA
RegLoadKeyW
RegOpenKeyExA
RegCreateKeyExW
RegEnumValueA
RegOpenKeyW
RegQueryValueExA
RegCreateKeyW
RegEnumKeyW
RegQueryValueExW
RegDeleteKeyA
RegQueryValueA
RegEnumValueW
RegQueryInfoKeyW
RegGetKeySecurity
RegQueryInfoKeyA
RegQueryValueW
RegLoadKeyA

user32

BlockInput
AppendMenuA
DialogBoxParamW
CopyRect
GetMenu
CreateIcon
CopyIcon
AlignRects
LoadMenuA
DialogBoxParamA
GetWindowTextA
DrawIcon
AppendMenuW
EndDialog
LoadCursorA
GetDlgItem
DrawTextA
GetFocus
InsertMenuA
DrawTextW
CloseWindow
DrawIconEx
IsWindow
CalcMenuBar
IsMenu
GetCursor
CopyImage
GetWindowTextLengthA
GetDC

kernel32

CloseHandle
WideCharToMultiByte
CloseHandle
lstrcpynA
CloseHandle
ExitProcess
CloseHandle
GetLastError
CloseHandle
Sleep
CloseHandle
lstrcmpiA
CloseHandle
GetFileType
CloseHandle
lstrcmpA
CloseHandle
lstrlenA
CloseHandle

Sections

.tdxt
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 219KB - Virtual size: 219KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.eaata
Size: 8KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.iaaaa
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

69cacf5ffcd6abb6b576cb0b07cf262c

Headers

File Characteristics

Imports

advapi32

user32

kernel32

Sections

.tdxt Size: 15KB - Virtual size: 14KB

.rdata Size: 219KB - Virtual size: 219KB

.eaata Size: 8KB - Virtual size: 59KB

.iaaaa Size: 7KB - Virtual size: 7KB

.tdxt
Size: 15KB - Virtual size: 14KB

.rdata
Size: 219KB - Virtual size: 219KB

.eaata
Size: 8KB - Virtual size: 59KB

.iaaaa
Size: 7KB - Virtual size: 7KB