f2cd6acac314ba9b13408077684e009d_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

f2cd6acac314ba9b13408077684e009d_JaffaCakes118
Size

186KB
MD5

f2cd6acac314ba9b13408077684e009d
SHA1

b71ba4738ac34b22e8fd183947bcd6bf41eb7d59
SHA256

bade959efe3936aa50fa7d4cb08ff263b919e9780c94a1ff62ef2226214ab9f8
SHA512

57f5d0cc50c8ae1b5ea74446f1b076d20a1a34c851661ba774c2ff819c763eb1f4258cc5cef3257bfd0c7252a86fbd431155178fa3a00fd1489ff213e808f621
SSDEEP

3072:YuG8/3smz7a02gwm1c4w/BqkyBrioPp4GGcCdcqU9qHK3qhLwzumNJV9LjZaBB21:xG8/Pz7w3m1c5COyBmXCqhLwzvdpZc2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f2cd6acac314ba9b13408077684e009d_JaffaCakes118

Files

f2cd6acac314ba9b13408077684e009d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6704500d5c0d24db0c59b454afc40110

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

advapi32

RegCreateKeyExA
RegQueryValueExA
RegDeleteKeyA
RegEnumKeyExA
RegOpenKeyExA
RegOpenKeyA
RegCloseKey
RegSetValueExA

oleacc

LresultFromObject
CreateStdAccessibleObject

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

shell32

SHGetPathFromIDListA
SHGetMalloc
SHGetSpecialFolderLocation

winmm

mciSendCommandA
sndPlaySoundA

ole32

CoTaskMemFree
ProgIDFromCLSID
StringFromCLSID

user32

SetWindowLongA
GetDlgItem
GetSysColor
ReleaseDC
SetCursor
LoadCursorA
GetDC
FillRect
IsWindow
SetWindowPos
MoveWindow
GetWindowInfo
GetWindowLongA
ReleaseCapture
SetCapture

kernel32

SetTapePosition
GetWindowsDirectoryA
ClearCommError
GetCurrentProcessId
InterlockedExchange
FindClose
EnumResourceNamesA
GetVersion
GetLocalTime
FatalExit
Sleep
FindFirstFileA

gdi32

TextOutA
Rectangle
CreateRectRgn
GetTextExtentPoint32A
SetTextColor
DeleteMetaFile
CreateCompatibleDC
SelectObject
GetDeviceCaps
GetStockObject
SetBkMode
BitBlt
DeleteObject
CreateFontIndirectA
DeleteDC
CreateSolidBrush
SaveDC
EnumFontFamiliesExA
GetObjectA
RestoreDC
CreateCompatibleBitmap

Sections

.text
Size: 153KB - Virtual size: 152KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lib
Size: 512B - Virtual size: 356KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6704500d5c0d24db0c59b454afc40110

Headers

File Characteristics

Imports

advapi32

oleacc

version

shell32

winmm

ole32

user32

kernel32

gdi32

Sections

.text Size: 153KB - Virtual size: 152KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 29KB - Virtual size: 29KB

.lib Size: 512B - Virtual size: 356KB

.text
Size: 153KB - Virtual size: 152KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 29KB - Virtual size: 29KB

.lib
Size: 512B - Virtual size: 356KB