40fa5d521054dad531c3d9a40d38de36_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

40fa5d521054dad531c3d9a40d38de36_JaffaCakes118
Size

72KB
MD5

40fa5d521054dad531c3d9a40d38de36
SHA1

db698c95425124e2b06ccf4eb112a9a21cf780e2
SHA256

1a2d078efb1cd27c3a21d1cb0415bdd82e5b28b03fc081aaaa318c06cf11e7fd
SHA512

3b489d4493bf3803f360bfee531d7f325615b999593c9b78a1d74532c3b7f091d9c543207c187967ec12880f2379101fc933205a3965c3b5af9dc8dd6882d61a
SSDEEP

1536:Fhv3MZWtPZrejbLWM39qGFr0dmi2E8VTRoP:FhaWtPZSf9oGWdPwR8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
40fa5d521054dad531c3d9a40d38de36_JaffaCakes118

Files

40fa5d521054dad531c3d9a40d38de36_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4b5019d5e3dd81614f38c20dc5bfb945

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegDeleteValueW
RegOpenKeyExA
RegQueryInfoKeyW
RegDeleteKeyA
RegQueryValueExA
RegOpenKeyExW
RegDeleteValueA
RegEnumKeyExW
RegReplaceKeyW
RegQueryValueExW
RegLoadKeyW
RegCreateKeyExA
RegOpenKeyA
RegReplaceKeyA
RegDeleteKeyW
RegLoadKeyA
RegQueryValueA
RegEnumValueW
RegEnumValueA
RegEnumKeyExA
RegFlushKey
RegCreateKeyExW
RegGetKeySecurity
RegQueryValueW
RegCreateKeyW
RegQueryInfoKeyA
RegEnumKeyA
RegOpenKeyW
RegEnumKeyW
RegGetKeySecurity
RegFlushKey
RegQueryValueA
RegEnumKeyExW
RegOpenKeyA
RegOpenKeyExW
RegEnumValueA
RegDeleteKeyA
RegQueryValueW
RegEnumValueW
RegOpenKeyExA
RegReplaceKeyA
RegEnumKeyW
RegQueryInfoKeyW
RegEnumKeyA
RegOpenKeyW
RegCreateKeyExW
RegCreateKeyExA
RegCreateKeyW
RegLoadKeyW
RegEnumKeyExA
RegReplaceKeyW
RegQueryValueExA
RegLoadKeyA
RegDeleteValueW
RegDeleteValueA
RegQueryValueExW
RegQueryInfoKeyA
RegDeleteKeyW

kernel32

CloseHandle
HeapFree
CloseHandle
GetModuleHandleA
CloseHandle
lstrcpyA
CloseHandle
DeleteFileA
CloseHandle
GetCommandLineA
CloseHandle
lstrlenA
CloseHandle
lstrcmpiA
CloseHandle
lstrcpynA
CloseHandle

user32

GetFocus
GetDlgItem
CreateIcon
DrawTextW
IsMenu
CopyImage
AppendMenuW
GetWindowTextLengthA
CloseWindow
BlockInput
LoadMenuA
GetDC
GetMenu
DrawIcon
CalcMenuBar
DialogBoxParamW
IsWindow
CopyRect
DrawTextA
InsertMenuA
CopyIcon
EndDialog
DialogBoxParamA
LoadCursorA
GetWindowTextA
AlignRects
AppendMenuA
DrawIconEx
GetCursor

Sections

.text
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rddta
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.eadta
Size: 1KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idaaa
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4b5019d5e3dd81614f38c20dc5bfb945

Headers

File Characteristics

Imports

advapi32

kernel32

user32

Sections

.text Size: 15KB - Virtual size: 14KB

.rddta Size: 45KB - Virtual size: 45KB

.eadta Size: 1KB - Virtual size: 43KB

.idaaa Size: 5KB - Virtual size: 5KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 15KB - Virtual size: 14KB

.rddta
Size: 45KB - Virtual size: 45KB

.eadta
Size: 1KB - Virtual size: 43KB

.idaaa
Size: 5KB - Virtual size: 5KB

.rsrc
Size: 1024B - Virtual size: 4KB