40089e583ec5631eb369840b032d3382_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

40089e583ec5631eb369840b032d3382_JaffaCakes118
Size

104KB
MD5

40089e583ec5631eb369840b032d3382
SHA1

dd672fd50a6dd4e4b01dd7aee1c0df62ad51864f
SHA256

02e4a2d360298d58587676bc3f8b9cf5dd299a2e0d80248b617a2c4d84de1bb9
SHA512

63526e8f31d65fb2c5d578699db7e87e7f65909e2b4eeba6463f56f7ca394ad8893db1a4032d636d34b4cb02bfa13feb840deb1c22dcddf698004143ca4d90cf
SSDEEP

768:UaGwXACsLh5/sJTcAXfdhLGdQZmGU7sLPuFQo2ogQUwA5cnpmPBurt0YSY4aKy2f:T7g//sJDFlE5ZQKned2npI8rt0YSY40

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
40089e583ec5631eb369840b032d3382_JaffaCakes118

Files

40089e583ec5631eb369840b032d3382_JaffaCakes118
.exe windows:4 windows x86 arch:x86

aacc6d37aa4b4b6318fee550cde86b16

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CreateIcon
GetCursor
AppendMenuW
BlockInput
CopyIcon
IsWindow
GetWindowTextLengthA
CloseWindow
GetFocus
DrawTextA
AlignRects
GetMenu
DrawTextW
LoadCursorA
DialogBoxParamW
GetDlgItem

advapi32

RegDeleteKeyW
RegEnumKeyA
RegOpenKeyA
RegDeleteValueA
RegFlushKey
RegReplaceKeyW
RegQueryValueExW
RegQueryInfoKeyW
RegEnumKeyW
RegEnumValueA
RegReplaceKeyA
RegCreateKeyExW
RegLoadKeyA
RegCreateKeyW
RegQueryInfoKeyA
RegDeleteKeyA
RegFlushKey
RegEnumValueW
RegEnumKeyExW
RegQueryInfoKeyW
RegOpenKeyExA
RegEnumKeyExA
RegDeleteKeyA
RegEnumKeyA
RegOpenKeyExW
RegQueryInfoKeyA
RegDeleteKeyW
RegLoadKeyW
RegEnumKeyW
RegCreateKeyExA
RegQueryValueA
RegOpenKeyA
RegGetKeySecurity
RegDeleteValueA
RegOpenKeyW
RegLoadKeyA
RegQueryValueW
RegQueryValueExA

comctl32

ImageList_Copy
ImageList_AddMasked
ImageList_Destroy
ImageList_Draw
ImageList_LoadImageW
ImageList_Merge
ImageList_GetImageCount
ImageList_LoadImageA
ImageList_Create
ImageList_AddIcon
ImageList_DragLeave
ImageList_Replace
ImageList_BeginDrag
ImageList_ReplaceIcon
ImageList_DragEnter

kernel32

CopyFileW
DeleteAtom
ExitThread
GetLastError
ReadConsoleA
GetConsoleMode
SetLastError
ReadFile
OpenFileMappingA
FindAtomA
GetFileSize
DeleteFileA
CreateThread
FindFirstFileA
Sleep
CreateDirectoryA
GetStdHandle

Sections

.text
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 72KB - Virtual size: 2.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 118B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

aacc6d37aa4b4b6318fee550cde86b16

Headers

File Characteristics

Imports

user32

advapi32

comctl32

kernel32

Sections

.text Size: 8KB - Virtual size: 5KB

.data Size: 72KB - Virtual size: 2.6MB

.tls Size: 4KB - Virtual size: 118B

.rdata Size: 4KB - Virtual size: 1KB

.idata Size: 4KB - Virtual size: 3KB

.reloc Size: 4KB - Virtual size: 1KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 8KB - Virtual size: 5KB

.data
Size: 72KB - Virtual size: 2.6MB

.tls
Size: 4KB - Virtual size: 118B

.rdata
Size: 4KB - Virtual size: 1KB

.idata
Size: 4KB - Virtual size: 3KB

.reloc
Size: 4KB - Virtual size: 1KB

.rsrc
Size: 4KB - Virtual size: 3KB