387d54de5437e42ed56117246cc0d58a_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

387d54de5437e42ed56117246cc0d58a_JaffaCakes118
Size

135KB
MD5

387d54de5437e42ed56117246cc0d58a
SHA1

5f59ec7a241109cb5b6598e906f8b6eca3785bc8
SHA256

e385ab0f84266dec081d820beb07a7cb346d1d82454921e49b47e10e6ad7c85f
SHA512

7221863133f4d1bb6511cd93d01d2580e016594715a5391af6527b558a8ce8bf696fd66478722cb650673a2382c66135e54a1ee4981937d01b26a9a7ac77ba81
SSDEEP

3072:gMIfnl3hhWXfB1HNzGExYMyWR9vZfZBXfkEiwi:gXWfB1EExYjc7VkEiwi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
387d54de5437e42ed56117246cc0d58a_JaffaCakes118

Files

387d54de5437e42ed56117246cc0d58a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9301ecd6903c0dbfe66145435d2cbe50

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadCursorA
DrawTextW
GetWindowTextA
GetDC
CreateIcon
GetFocus
AppendMenuA
CopyImage
LoadMenuA
DialogBoxParamA
AppendMenuW
GetMenu
DrawTextA
DrawIconEx
EndDialog
IsWindow
GetDlgItem
CalcMenuBar
DrawIcon
InsertMenuA
CloseWindow
IsMenu
GetWindowTextLengthA
CopyRect
CopyIcon
DialogBoxParamW
BlockInput
GetCursor
AlignRects

advapi32

RegOpenKeyExW
RegCreateKeyExW
RegEnumKeyA
RegEnumKeyW
RegEnumValueA
RegQueryValueExW
RegDeleteKeyA
RegLoadKeyA
RegCreateKeyW
RegDeleteValueA
RegOpenKeyExA
RegLoadKeyW
RegReplaceKeyA
RegCreateKeyExA
RegReplaceKeyW
RegQueryValueExA
RegEnumValueW
RegEnumKeyExA
RegOpenKeyW
RegQueryInfoKeyA
RegOpenKeyA
RegEnumKeyExW
RegFlushKey
RegQueryInfoKeyW
RegDeleteKeyW
RegQueryValueW
RegQueryValueA
RegDeleteValueW
RegGetKeySecurity
RegCreateKeyExW
RegEnumKeyExW
RegQueryInfoKeyA
RegEnumKeyExA
RegDeleteKeyA
RegQueryValueExA
RegEnumValueW
RegQueryValueExW
RegOpenKeyA
RegFlushKey
RegDeleteValueW
RegCreateKeyW
RegEnumValueA
RegGetKeySecurity
RegLoadKeyA
RegLoadKeyW
RegOpenKeyExA
RegQueryValueW
RegDeleteKeyW
RegEnumKeyA
RegOpenKeyExW
RegOpenKeyW
RegCreateKeyExA
RegDeleteValueA
RegReplaceKeyA
RegQueryInfoKeyW
RegEnumKeyW
RegReplaceKeyW
RegQueryValueA

kernel32

CloseHandle
ExitProcess
CloseHandle
GetCPInfo
CloseHandle
GlobalFree
CloseHandle
WideCharToMultiByte
CloseHandle
GetDateFormatA
CloseHandle
GetLocalTime
CloseHandle
HeapFree
CloseHandle
GetCommandLineA

Sections

.text
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.raada
Size: 103KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 126KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idaaa
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9301ecd6903c0dbfe66145435d2cbe50

Headers

File Characteristics

Imports

user32

advapi32

kernel32

Sections

.text Size: 18KB - Virtual size: 18KB

.raada Size: 103KB - Virtual size: 102KB

.edata Size: 1024B - Virtual size: 126KB

.reloc Size: 8KB - Virtual size: 8KB

.idaaa Size: 1024B - Virtual size: 1KB

.text
Size: 18KB - Virtual size: 18KB

.raada
Size: 103KB - Virtual size: 102KB

.edata
Size: 1024B - Virtual size: 126KB

.reloc
Size: 8KB - Virtual size: 8KB

.idaaa
Size: 1024B - Virtual size: 1KB