3ec18173f0b5b2796639b61629a1c0ef_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

3ec18173f0b5b2796639b61629a1c0ef_JaffaCakes118
Size

166KB
MD5

3ec18173f0b5b2796639b61629a1c0ef
SHA1

6e198eeaac3587d6dae249d955f272da9062ae82
SHA256

f449e4ce4bb2428822419c62ee3a0c13c2e0729a62c6cd582cac5795a61fdcd4
SHA512

e061a89ab196267e4b44591be53264b6318b933d0430dbb02a771dd852316c98babcd58bf5fbd55ce04cd4535a0d4a27ce649020de57c0263fcd8b28ac672d80
SSDEEP

3072:KNcsCZxVHkd9002I+NQWVITvdUugFNPkATMOFfCV+oZuK:fZx6Mk+NQztgAATid4K

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3ec18173f0b5b2796639b61629a1c0ef_JaffaCakes118

Files

3ec18173f0b5b2796639b61629a1c0ef_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4bc91010acbb03e0351d51da3e92e741

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegLoadKeyW
RegEnumValueW
RegQueryValueExW
RegEnumKeyExW
RegCreateKeyW
RegEnumKeyA
RegGetKeySecurity
RegOpenKeyA
RegDeleteKeyA
RegDeleteKeyW
RegOpenKeyW
RegQueryValueW
RegEnumValueA
RegQueryInfoKeyW
RegDeleteValueW
RegCreateKeyExW
RegCreateKeyExA
RegQueryInfoKeyA
RegEnumKeyW
RegReplaceKeyA
RegOpenKeyExA
RegReplaceKeyW
RegOpenKeyExW
RegFlushKey
RegQueryValueExA
RegDeleteValueA
RegEnumKeyExA
RegLoadKeyA
RegQueryValueA
RegEnumKeyExA
RegQueryValueExW
RegDeleteValueW
RegFlushKey
RegQueryValueA
RegQueryValueExA
RegDeleteValueA
RegCreateKeyExW
RegQueryInfoKeyA
RegLoadKeyW
RegCreateKeyExA
RegOpenKeyExW
RegReplaceKeyW
RegOpenKeyW
RegEnumKeyW
RegDeleteKeyA
RegEnumValueA
RegQueryInfoKeyW
RegLoadKeyA
RegOpenKeyExA
RegEnumValueW
RegDeleteKeyW
RegGetKeySecurity
RegEnumKeyA
RegReplaceKeyA
RegCreateKeyW
RegEnumKeyExW
RegQueryValueW
RegOpenKeyA

user32

CalcMenuBar
DrawIcon
CopyIcon
DrawIconEx
GetDlgItem
AppendMenuW
CopyImage
EndDialog
CreateIcon
GetDC
GetWindowTextLengthA
DialogBoxParamW
LoadMenuA
InsertMenuA
GetCursor
GetFocus
AlignRects
IsWindow
BlockInput
LoadCursorA
DialogBoxParamA
DrawTextA
GetMenu
AppendMenuA
GetWindowTextA
DrawTextW
CloseWindow
CopyRect
IsMenu

kernel32

GetLastError
GetStringTypeW
GetLastError
lstrcmpiA
GetLastError
GetModuleFileNameA
GetLastError
GetModuleHandleA
GetLastError
GetFileSize
GetLastError
lstrcpyA
GetLastError
GetLocalTime
GetLastError
FreeLibrary
GetLastError
GetDateFormatA
GetLastError

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rddta
Size: 142KB - Virtual size: 142KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4bc91010acbb03e0351d51da3e92e741

Headers

File Characteristics

Imports

advapi32

user32

kernel32

Sections

.text Size: 10KB - Virtual size: 10KB

.rddta Size: 142KB - Virtual size: 142KB

.edata Size: 1024B - Virtual size: 53KB

.idata Size: 8KB - Virtual size: 8KB

.text
Size: 10KB - Virtual size: 10KB

.rddta
Size: 142KB - Virtual size: 142KB

.edata
Size: 1024B - Virtual size: 53KB

.idata
Size: 8KB - Virtual size: 8KB