2d6a2c2a139409787c40b5714083d6ce_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2d6a2c2a139409787c40b5714083d6ce_JaffaCakes118
Size

62KB
MD5

2d6a2c2a139409787c40b5714083d6ce
SHA1

ae7308238b3532044f9e29bc31a03eb38148d1cf
SHA256

e98e18f5bac7e8c348cadb2b2162a0859db864a95baa039cde28e088759570b7
SHA512

acbc524e54fc52828092d780cf1faab06d0a80598dedd8f6025c2558e4b9c67a50005f997fd18d6dfdfefb925a39815bb3c7f0b5918bcf64721e5cc11c12e953
SSDEEP

768:Ebip1nfDrT2DBaBw9HojzuHFYQ24q1zCBvLxy4LDIGzWmbtpcYudLOF4PJqTz2U:uK7rw829IjoFPqzCBhT0YaLOFiczz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2d6a2c2a139409787c40b5714083d6ce_JaffaCakes118

Files

2d6a2c2a139409787c40b5714083d6ce_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2edb8c884322ec8ec23f7042161d127c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCreateKeyExA
RegDeleteKeyA
RegFlushKey
RegEnumKeyW
RegReplaceKeyA
RegQueryValueExW
RegQueryInfoKeyW
RegLoadKeyW
RegDeleteKeyW
RegGetKeySecurity
RegOpenKeyExA
RegDeleteValueA
RegEnumValueW
RegEnumKeyA
RegOpenKeyW
RegQueryValueExA
RegOpenKeyA
RegLoadKeyA
RegQueryValueA
RegEnumKeyExA
RegEnumValueA
RegEnumKeyExW
RegDeleteValueW
RegQueryValueW
RegReplaceKeyW
RegQueryInfoKeyA
RegCreateKeyW
RegCreateKeyExW
RegOpenKeyExW
RegOpenKeyExW
RegEnumKeyW
RegEnumValueW
RegCreateKeyExA
RegDeleteKeyA
RegOpenKeyExA
RegCreateKeyExW
RegLoadKeyA
RegQueryInfoKeyW
RegGetKeySecurity
RegLoadKeyW
RegDeleteValueA
RegOpenKeyA
RegEnumKeyExA
RegQueryValueA
RegFlushKey
RegQueryInfoKeyA
RegCreateKeyW
RegEnumValueA
RegDeleteValueW
RegReplaceKeyA
RegEnumKeyA
RegQueryValueExW
RegQueryValueExA
RegReplaceKeyW
RegQueryValueW
RegOpenKeyW
RegDeleteKeyW
RegEnumKeyExW

user32

DrawTextW
GetWindowTextLengthA
CreateIcon
AppendMenuW
GetCursor
EndDialog
DrawTextA
LoadCursorA
AppendMenuA
DialogBoxParamA
CloseWindow
IsWindow
CopyImage
GetMenu
CalcMenuBar
GetDC
DialogBoxParamW
InsertMenuA
DrawIconEx
CopyIcon
GetFocus
DrawIcon
GetDlgItem
GetWindowTextA
CopyRect
LoadMenuA
AlignRects
IsMenu
BlockInput

kernel32

GetLastError
GetModuleFileNameA
GetLastError
GetFileType
GetLastError
lstrcpynA
GetLastError
GetLastError
GetLastError
GetLocalTime
GetLastError
GetCPInfo
GetLastError
lstrcmpA
GetLastError
FreeLibrary
GetLastError
GetStringTypeW
GetLastError
lstrcatA

Sections

.t99t
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.r59ta
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 3KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.id77a
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2edb8c884322ec8ec23f7042161d127c

Headers

File Characteristics

Imports

advapi32

user32

kernel32

Sections

.t99t Size: 10KB - Virtual size: 10KB

.r59ta Size: 35KB - Virtual size: 35KB

.edata Size: 3KB - Virtual size: 48KB

.id77a Size: 7KB - Virtual size: 7KB

.rsrc Size: 1024B - Virtual size: 4KB

.t99t
Size: 10KB - Virtual size: 10KB

.r59ta
Size: 35KB - Virtual size: 35KB

.edata
Size: 3KB - Virtual size: 48KB

.id77a
Size: 7KB - Virtual size: 7KB

.rsrc
Size: 1024B - Virtual size: 4KB