55c2c76595df849e77fe10e663475e26_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

55c2c76595df849e77fe10e663475e26_JaffaCakes118
Size

74KB
MD5

55c2c76595df849e77fe10e663475e26
SHA1

8f89b252910c8b11c078ff2c89c5d48f987f479e
SHA256

dd0c35f82db4b095fbabfcf9c98cc52d2dc0704b0217f79c1274097619b73311
SHA512

8cdcdda9883c8fa2306c1fe280bfc5810e3626bf8dc54acd9fa4b5ed9eeb510916e5c2eb4bd4df1cf7092e05c7c7f5fdfc21ad54b3525a26872eab29ae72de0a
SSDEEP

768:NEOIgEKP64eOHu2ObAcMn45ZLgSqUgQI78qlMvRNZC4rDGw8hWbSTn85e8tev+oE:NEF4eOO2ObA+P3S8fvRN75cWbSTgdo+7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
55c2c76595df849e77fe10e663475e26_JaffaCakes118

Files

55c2c76595df849e77fe10e663475e26_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3e573f6ba61ac9f322182955c8c4eeb0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegQueryInfoKeyW
RegQueryValueW
RegFlushKey
RegEnumValueW
RegOpenKeyExA
RegQueryValueExW
RegEnumKeyExW
RegLoadKeyW
RegOpenKeyA
RegQueryInfoKeyA
RegEnumValueA
RegReplaceKeyW
RegCreateKeyExA
RegCreateKeyExW
RegEnumKeyA
RegDeleteKeyW
RegEnumKeyExA
RegReplaceKeyA
RegDeleteKeyA
RegLoadKeyA
RegQueryValueA
RegOpenKeyW
RegQueryValueExA
RegGetKeySecurity
RegEnumKeyW
RegCreateKeyW
RegOpenKeyExW
RegDeleteValueA
RegDeleteValueW
RegEnumKeyExA
RegQueryValueW
RegReplaceKeyA
RegQueryInfoKeyA
RegOpenKeyExA
RegQueryValueExA
RegQueryValueExW
RegCreateKeyExW
RegDeleteKeyA
RegCreateKeyExA
RegGetKeySecurity
RegOpenKeyA
RegEnumValueW
RegEnumKeyExW
RegEnumKeyW
RegFlushKey
RegDeleteValueW
RegLoadKeyW
RegQueryInfoKeyW
RegDeleteValueA
RegCreateKeyW
RegReplaceKeyW
RegDeleteKeyW
RegLoadKeyA
RegOpenKeyW
RegEnumKeyA
RegOpenKeyExW
RegEnumValueA
RegQueryValueA

kernel32

GetLastError
GetStdHandle
GetLastError
ExitProcess
GetLastError
GetFileAttributesA
GetLastError
DeleteFileA
GetLastError
WideCharToMultiByte
GetLastError
GetCommandLineA
GetLastError
lstrcpynA
GetLastError
lstrcmpiA
GetLastError
GetCPInfo
GetLastError
GetFileType

user32

AppendMenuA
CloseWindow
GetWindowTextA
EndDialog
GetCursor
CalcMenuBar
GetDC
GetFocus
CreateIcon
GetDlgItem
DrawTextW
DialogBoxParamW
DrawIcon
DialogBoxParamA
AlignRects
DrawTextA
CopyIcon
IsWindow
IsMenu
CopyRect
LoadMenuA
InsertMenuA
DrawIconEx
LoadCursorA
GetMenu
GetWindowTextLengthA
AppendMenuW
CopyImage
BlockInput
IsMenu
GetDC
AppendMenuW
GetCursor
CopyImage
GetFocus
DrawTextW
LoadMenuA
DialogBoxParamA
CopyIcon
DrawTextA
CreateIcon
EndDialog
CloseWindow
DialogBoxParamW
CopyRect
AlignRects
LoadCursorA
GetDlgItem
DrawIcon
GetWindowTextLengthA
InsertMenuA
GetMenu
BlockInput
GetWindowTextA
IsWindow
AppendMenuA
DrawIconEx
CalcMenuBar

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.da7a
Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rda4a
Size: 2KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 514B

IMAGE_SCN_MEM_READ

.r15c
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3e573f6ba61ac9f322182955c8c4eeb0

Headers

File Characteristics

Imports

advapi32

kernel32

user32

Sections

.text Size: 10KB - Virtual size: 10KB

.da7a Size: 49KB - Virtual size: 48KB

.rda4a Size: 2KB - Virtual size: 61KB

.bss Size: - Virtual size: 514B

.r15c Size: 7KB - Virtual size: 7KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 10KB - Virtual size: 10KB

.da7a
Size: 49KB - Virtual size: 48KB

.rda4a
Size: 2KB - Virtual size: 61KB

.bss
Size: - Virtual size: 514B

.r15c
Size: 7KB - Virtual size: 7KB

.rsrc
Size: 1024B - Virtual size: 4KB