16199488cb3c72ec25c72a5f793a0777_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

16199488cb3c72ec25c72a5f793a0777_JaffaCakes118
Size

113KB
MD5

16199488cb3c72ec25c72a5f793a0777
SHA1

1dd73db26ea83439d983afc053b9b57feebbabea
SHA256

f15271b43e0f55d3dab4ec5b5db7807d11155da3887abb80a837cc8436d28447
SHA512

3df81a871928794bd1d45103dcff8288fc4bde8caddc5fd31304ce021a767a906786830b752c764fca2d45af99e21b2d558fd8eeb1d2e36d2507006fb51ce05d
SSDEEP

1536:qwXHvAWVTVNIuQyNmVj6pwg4pvHiEu+IpU1IvZkbpaoHBH:q6PAITVNIupscW5H+UCvZqHZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
16199488cb3c72ec25c72a5f793a0777_JaffaCakes118

Files

16199488cb3c72ec25c72a5f793a0777_JaffaCakes118
.exe windows:4 windows x86 arch:x86

28e00d67695f7721760561464626d22b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

OpenFileMappingA
CopyFileExA
ExitThread
SetLastError
CopyFileExW
DeleteFileW
GetFileSize
CreateDirectoryA
CopyFileW
OpenFile
FindFirstFileA
CopyFileA
GetComputerNameA
GetConsoleMode
GetLastError
GetStdHandle
GetCommandLineA
ReadFile
CreateThread
SetLastError
CopyFileExW
ReadFile
DeleteFileW
FindFirstFileA
CopyFileW
GlobalFree
GetCommandLineA
GetCPInfo
GetComputerNameA
OpenFile
WriteFile
GetConsoleMode
ExitThread
GetFileTime
Sleep
CreateDirectoryA
ReadConsoleA
CreateThread
Sleep
GetFileTime
GetLastError
ExitThread
CopyFileW
WriteFile
CopyFileExW
GlobalFree

advapi32

RegReplaceKeyA
RegQueryValueA
RegCreateKeyExW
RegQueryValueExW
RegQueryInfoKeyW
RegEnumValueA
RegLoadKeyW
RegFlushKey
RegReplaceKeyW
RegQueryValueExA
RegEnumKeyExA
RegEnumValueW
RegDeleteKeyA
RegOpenKeyExA
RegGetKeySecurity
RegQueryInfoKeyA
RegOpenKeyExW
RegFlushKey
RegEnumKeyExA
RegEnumKeyA
RegLoadKeyA
RegDeleteValueW
RegQueryValueA
RegQueryValueExA
RegDeleteValueA
RegCreateKeyW
RegLoadKeyW
RegEnumKeyA
RegOpenKeyA
RegFlushKey
RegQueryInfoKeyW
RegQueryValueExA
RegEnumKeyExA
RegDeleteKeyW
RegQueryValueW
RegDeleteValueW
RegEnumValueW

comctl32

ImageList_EndDrag
ImageList_Create
ImageList_BeginDrag
ImageList_Replace
ImageList_DragEnter
ImageList_LoadImageW
ImageList_GetImageRect
ImageList_DragMove
ImageList_LoadImageA
ImageList_Merge

user32

CreateIcon
DialogBoxParamA
CopyIcon
CopyRect
GetCursor
AlignRects
LoadMenuA
GetWindowTextLengthA
IsWindow
IsMenu
DrawIcon

gdi32

DeleteObject
AddFontResourceExA
GetDCOrgEx
ClearBrushAttributes
AddFontResourceExW
ExcludeClipRect
ExtTextOutA
CloseMetaFile
AddFontResourceW
BeginPath
AddFontResourceA
ClearBitmapAttributes
SetTextColor
CancelDC
BitBlt
GetCurrentPositionEx
DeleteDC
GetPixel
GetDCOrgEx
DeleteObject
GetPixel
AddFontResourceA
AddFontResourceExW
GetBrushOrgEx
CancelDC
ClearBitmapAttributes

Sections

.text
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 81KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bbs
Size: - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: - Virtual size: 80B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 692B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 516B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

28e00d67695f7721760561464626d22b

Headers

File Characteristics

Imports

kernel32

advapi32

comctl32

user32

gdi32

Sections

.text Size: 24KB - Virtual size: 24KB

.data Size: 81KB - Virtual size: 80KB

.bbs Size: - Virtual size: 60KB

.idata Size: 5KB - Virtual size: 4KB

.tls Size: - Virtual size: 80B

.rdata Size: 512B - Virtual size: 692B

.rsrc Size: 1024B - Virtual size: 516B

.text
Size: 24KB - Virtual size: 24KB

.data
Size: 81KB - Virtual size: 80KB

.bbs
Size: - Virtual size: 60KB

.idata
Size: 5KB - Virtual size: 4KB

.tls
Size: - Virtual size: 80B

.rdata
Size: 512B - Virtual size: 692B

.rsrc
Size: 1024B - Virtual size: 516B