9b4fd8ecfebaa7dca2d7ce21d0f78640_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

9b4fd8ecfebaa7dca2d7ce21d0f78640_JaffaCakes118
Size

78KB
MD5

9b4fd8ecfebaa7dca2d7ce21d0f78640
SHA1

3fa4b15c135ca09d25963bf8951734c8d4b5253e
SHA256

e419d9cb7f0b1af6c5204772a1589d484a0b03df7b9fb5a49ce60df643836690
SHA512

38a47c7e91d0ac22bfdf14375d7d97c4d19fd1600404bf227b86939ba2bd07de7780ba28473d81d228e95b22cdc35b09a27c06cf89329562ab95bf3d00dd0b1b
SSDEEP

1536:nH1rUlc2expcUmH3Cxb2y9UngltefESh9W:H1oi2SpcUE62y9UngltaO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9b4fd8ecfebaa7dca2d7ce21d0f78640_JaffaCakes118

Files

9b4fd8ecfebaa7dca2d7ce21d0f78640_JaffaCakes118
.exe windows:4 windows x86 arch:x86

48971917439614176f5038d86d4316b4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteFile
GetCommandLineW
VirtualAllocEx

user32

LoadIconW
LoadCursorA
SetForegroundWindow
GetForegroundWindow
CreateWindowExA
EnableMenuItem
GetSubMenu
LoadMenuA
GetCursorPos
SetFocus
LoadIconA
RegisterClassA
SetTimer
SystemParametersInfoA
DefWindowProcA
GetDesktopWindow
TrackPopupMenuEx
RemoveMenu
DestroyMenu
DestroyWindow
DestroyIcon
KillTimer
MsgWaitForMultipleObjects
TranslateMessage
DispatchMessageA
PostQuitMessage
PeekMessageA
LoadStringA
CharNextA
wsprintfA

gdi32

GetStockObject
ExcludeClipRect
GetDIBits
GetObjectA
TextOutW
Polygon
CombineRgn
SetRectRgn
CreateRectRgnIndirect
GetClipBox
DPtoLP
GetLayout
CreateRectRgn
StretchBlt
SelectClipRgn
ExtTextOutW
Rectangle
SetViewportOrgEx
SetROP2
GetNearestColor
CreatePen
CreateDCW
GetCurrentObject
RestoreDC
LineTo
LPtoDP
SetWindowOrgEx
SetMapMode
SaveDC
MoveToEx
GetTextMetricsW
GetTextExtentPoint32W
CreateSolidBrush
GetDeviceCaps
CreateDIBSection
CreateCompatibleBitmap
SetBrushOrgEx
CreateFontIndirectW
SetBkMode
CreateCompatibleDC
BitBlt
CreateBitmap
CreatePatternBrush
SelectObject
PatBlt
DeleteDC
DeleteObject
GetObjectW
SetBkColor
SetTextColor

advapi32

RegOpenKeyExA

Sections

.text
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 47KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.datar8
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.datar7
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.datar6
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.datar5
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.datar4
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.datar3
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.datar2
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.datar1
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.datar
Size: 1024B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

48971917439614176f5038d86d4316b4

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 14KB - Virtual size: 14KB

.rdata Size: 47KB - Virtual size: 47KB

.data Size: 2KB - Virtual size: 2KB

.datar8 Size: 1024B - Virtual size: 1000B

.datar7 Size: 1024B - Virtual size: 1000B

.datar6 Size: 1024B - Virtual size: 1000B

.datar5 Size: 1024B - Virtual size: 1000B

.datar4 Size: 1024B - Virtual size: 1000B

.datar3 Size: 1024B - Virtual size: 1000B

.datar2 Size: 1024B - Virtual size: 1000B

.datar1 Size: 1024B - Virtual size: 1000B

.datar Size: 1024B - Virtual size: 8KB

.text
Size: 14KB - Virtual size: 14KB

.rdata
Size: 47KB - Virtual size: 47KB

.data
Size: 2KB - Virtual size: 2KB

.datar8
Size: 1024B - Virtual size: 1000B

.datar7
Size: 1024B - Virtual size: 1000B

.datar6
Size: 1024B - Virtual size: 1000B

.datar5
Size: 1024B - Virtual size: 1000B

.datar4
Size: 1024B - Virtual size: 1000B

.datar3
Size: 1024B - Virtual size: 1000B

.datar2
Size: 1024B - Virtual size: 1000B

.datar1
Size: 1024B - Virtual size: 1000B

.datar
Size: 1024B - Virtual size: 8KB