375d3bfa5022583da912f38e8900b004_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

375d3bfa5022583da912f38e8900b004_JaffaCakes118
Size

121KB
MD5

375d3bfa5022583da912f38e8900b004
SHA1

63b7767442dab7f6f54ae70c1993e2450b0f1598
SHA256

562c8e848d5d431cc157fd6607aed9177f37915995424544cd1f9a4b8bf069b1
SHA512

4ed2401bf598732fcb647dc41ebb4fc66a4041fa73befa17175132ae712dddf53e3e854ec6f715d8373624aa3086b01ac31082f09121793006adc30af80ad029
SSDEEP

3072:nBR3akobAZQ1cogUI2pdwlsV1jvPM6nTma:nr342GjI2p6ALPrnTT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
375d3bfa5022583da912f38e8900b004_JaffaCakes118

Files

375d3bfa5022583da912f38e8900b004_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5ee16b57283973648fde996feca3f6c7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_AddIcon
ImageList_Merge
ImageList_AddMasked
ImageList_LoadImage
ImageList_BeginDrag
ImageList_Read
ImageList_GetImageCount
ImageList_DragEnter
ImageList_Destroy
ImageList_GetImageInfo
ImageList_GetIcon
ImageList_DrawIndirect
ImageList_Remove
ImageList_DragLeave
ImageList_LoadImageA
ImageList_Copy
ImageList_GetDragImage

user32

IsWindow
InsertMenuA
DialogBoxParamW
LoadMenuA
CreateIcon
IsMenu
CopyImage
BlockInput
DrawIconEx
EndDialog
CloseWindow
CalcMenuBar
GetWindowTextLengthA
LoadCursorA
DialogBoxParamA
AppendMenuW
CopyImage
IsMenu
CopyRect
DrawIconEx
CloseWindow
GetCursor
GetWindowTextLengthA
AppendMenuA
EndDialog
DialogBoxParamA
IsWindow
GetDC
GetDlgItem
GetWindowTextA
InsertMenuA
LoadCursorA
BlockInput

kernel32

GetFileType
FreeLibrary
Sleep
GetStdHandle
GetLocalTime
GetCPInfo
lstrlenA
HeapFree
HeapAlloc
GlobalAlloc
GetModuleHandleA
lstrcpynA
lstrcmpiA
GetLastError
lstrcmpA
WideCharToMultiByte

advapi32

RegDeleteKeyW
RegQueryValueExA
RegEnumKeyW
RegLoadKeyA
RegQueryInfoKeyA
RegCreateKeyExW
RegLoadKeyW
RegDeleteValueA
RegGetKeySecurity
RegReplaceKeyW
RegEnumKeyExA
RegDeleteValueW
RegOpenKeyExW
RegCreateKeyW
RegQueryInfoKeyW
RegEnumValueW
RegQueryValueA

Sections

.tlldaz
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.wvpJ
Size: 103KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.wErot
Size: 1KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vXaA
Size: 1KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Rbexf
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5ee16b57283973648fde996feca3f6c7

Headers

File Characteristics

Imports

comctl32

user32

kernel32

advapi32

Sections

.tlldaz Size: 10KB - Virtual size: 10KB

.wvpJ Size: 103KB - Virtual size: 102KB

.wErot Size: 1KB - Virtual size: 20KB

.vXaA Size: 1KB - Virtual size: 2KB

.Rbexf Size: 1024B - Virtual size: 1KB

.tlldaz
Size: 10KB - Virtual size: 10KB

.wvpJ
Size: 103KB - Virtual size: 102KB

.wErot
Size: 1KB - Virtual size: 20KB

.vXaA
Size: 1KB - Virtual size: 2KB

.Rbexf
Size: 1024B - Virtual size: 1KB