135b03c8797cbab99e5c191e9a16a766_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

135b03c8797cbab99e5c191e9a16a766_JaffaCakes118
Size

95KB
MD5

135b03c8797cbab99e5c191e9a16a766
SHA1

49f1b9bc85ea0c0e1e17eeb04eff220126302895
SHA256

8cfc8f73b1cf1ad7a6de23a37e284e5049501458f770fd03849ecf8626500e61
SHA512

93e6065997f2909d18a66fcb41911d6db471e327781388eaf58c43e678fd35be9eccf137ffa4477daf18535a48190fd8ff07471756eed8ae883e8eace1c74585
SSDEEP

1536:Flq60XkpF4IABLv9RUVjcORGAGPonmfOl+3ItaGR+ll43zqkDGta+:Z0UT4IABbABuomj3ItKlWti

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
135b03c8797cbab99e5c191e9a16a766_JaffaCakes118

Files

135b03c8797cbab99e5c191e9a16a766_JaffaCakes118
.exe windows:4 windows x86 arch:x86

df30f98f856fabf10546f31c5a7c19ff

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetUserDefaultLangID
GetLastError
GetCurrentThread
GetCPInfo
FindAtomA
FindFirstFileA
GetCurrentProcess
GetFileSize
DeleteFileA
DeleteFileW
GetCurrentThreadId
GetFileTime
ExitProcess
GetCPInfo
ExitProcess
DeleteFileW
GetComputerNameA
OpenFile
GetFileSize
GetStdHandle
GetCurrentThread
GetCurrentThreadId
GetUserDefaultLangID
GetOEMCP
CreateThread
GetFileTime
GetUserDefaultLangID
ExitThread
CreateProcessA
GetUserDefaultLCID
GetConsoleOutputCP
OpenFile
GetCurrentThread
GetStdHandle
GetCurrentProcess
GlobalFree
GetOEMCP
DeleteFileW
GetComputerNameA
GetLastError
CreateDirectoryA
GetFileSize
GetFileTime
GetStdHandle
DeleteFileA
CopyFileW
DeleteFileW
GetCommandLineA
GetConsoleMode
ExitThread
GetCurrentProcessId
GetLastError
GetCurrentThread
GetFileSize
Sleep
DeleteAtom
GetCurrentThreadId

advapi32

RegOpenKeyW
RegOpenKeyExW
RegCreateKeyExW
RegDeleteValueW
RegEnumValueA
RegOpenKeyExA
RegFlushKey
RegQueryValueA
RegEnumKeyW
RegEnumValueW
RegReplaceKeyW
RegEnumKeyExW
RegQueryValueW
RegDeleteValueA
RegEnumKeyExA
RegQueryInfoKeyA
RegDeleteKeyA
RegEnumKeyExA
RegOpenKeyA
RegOpenKeyExA
RegCreateKeyExA
RegQueryValueA
RegQueryValueW
RegOpenKeyExW
RegLoadKeyW
RegReplaceKeyA
RegQueryValueExA
RegQueryValueExW
RegCreateKeyExW
RegEnumKeyA
RegQueryInfoKeyA
RegDeleteValueW
RegCreateKeyW
RegFlushKey
RegDeleteValueW
RegOpenKeyW
RegOpenKeyA
RegReplaceKeyW
RegCreateKeyExW
RegQueryValueExW
RegQueryValueExA
RegEnumKeyExW
RegDeleteKeyW
RegEnumValueA
RegGetKeySecurity
RegEnumKeyW
RegEnumValueW
RegOpenKeyW
RegEnumKeyExA
RegLoadKeyA
RegReplaceKeyA
RegQueryValueExA
RegEnumKeyW
RegQueryValueExW
RegQueryInfoKeyW
RegQueryInfoKeyA
RegQueryValueW
RegCreateKeyW
RegCreateKeyExA

user32

GetWindowTextA
DrawIcon
InsertMenuA
DrawTextA
CreateIcon
DialogBoxParamW
GetDlgItem
CopyImage
GetDC
DrawIconEx
GetFocus
AppendMenuA
CloseWindow
DialogBoxParamA
CalcMenuBar
GetMenu
GetCursor
BlockInput
GetWindowTextLengthA
GetWindowTextLengthA
CloseWindow
DrawTextW
CopyImage
DrawIcon
GetWindowTextA
AlignRects
DrawIconEx
GetFocus
DrawTextA
EndDialog
GetDlgItem
GetMenu
DrawTextW
GetWindowTextLengthA
DialogBoxParamW
DrawIcon
CloseWindow
DrawTextA
GetMenu
LoadCursorA
GetCursor
CalcMenuBar
GetFocus
IsMenu
GetDC
GetDlgItem
CreateIcon

Sections

.text
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.init
Size: 45KB - Virtual size: 373KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 571B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

df30f98f856fabf10546f31c5a7c19ff

Headers

File Characteristics

Imports

kernel32

advapi32

user32

Sections

.text Size: 30KB - Virtual size: 29KB

.rdata Size: 7KB - Virtual size: 6KB

.init Size: 45KB - Virtual size: 373KB

.idata Size: 4KB - Virtual size: 4KB

.data Size: 6KB - Virtual size: 5KB

.rsrc Size: 1024B - Virtual size: 571B

.text
Size: 30KB - Virtual size: 29KB

.rdata
Size: 7KB - Virtual size: 6KB

.init
Size: 45KB - Virtual size: 373KB

.idata
Size: 4KB - Virtual size: 4KB

.data
Size: 6KB - Virtual size: 5KB

.rsrc
Size: 1024B - Virtual size: 571B