e9176bea90a9ad3f78d8d38eec06d1c7_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

e9176bea90a9ad3f78d8d38eec06d1c7_JaffaCakes118
Size

75KB
MD5

e9176bea90a9ad3f78d8d38eec06d1c7
SHA1

7d80e31a68978926c3ed4de2ee3c1593a374f197
SHA256

9d4a591238b79b8e41cecda68182976b092ced26dac29d1657c772edf1d48163
SHA512

f4bc5403c3ca5f5b8f359221741c656c82f0851b8b06b224c21c0b29a49141ca60a52fad6af9c0fc41e441cee7a35bbb1777e405b44ee1991df751b4cc872bc5
SSDEEP

1536:PBgVp/YcrEfWHLWjd0Alcz2CHGkO7zyj8y2mU+RPJqUh:PBgVpjLAlcKlzPyjFUAPZh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e9176bea90a9ad3f78d8d38eec06d1c7_JaffaCakes118

Files

e9176bea90a9ad3f78d8d38eec06d1c7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

959c086a8a160db172e52c3619233413

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

RemoveMenu
IsWindowVisible
DestroyMenu
GetMenu
CharLowerA
IsMenu
DestroyWindow
IsChild
DrawFrameControl
ChildWindowFromPoint
SendMessageW
GetWindowDC
ScreenToClient
ReleaseDC
GetLastActivePopup
IsDlgButtonChecked
OpenIcon
SetWindowLongW
EnumThreadWindows
GetWindowLongW
DeleteMenu
EnableScrollBar
SetWindowPos
SetClassLongA
GetSubMenu
EndPaint
GetDC
EnumChildWindows
ReleaseCapture
SetPropA
UnhookWindowsHookEx
SetWindowTextA
SetWindowPlacement
EnumWindows
UpdateWindow
RegisterClipboardFormatA
DrawMenuBar
DrawEdge
GetClassNameA
wsprintfA
ShowOwnedPopups
FrameRect
GetMenuStringA
CheckMenuItem
EqualRect
LoadIconA
CreatePopupMenu
GetIconInfo
RegisterWindowMessageA
ShowWindow
GetWindowTextLengthA
CharNextW
MessageBoxA
GetKeyboardLayoutNameA
GetDCEx
LoadCursorA
OffsetRect
MessageBeep
GetKeyboardLayout
GetTopWindow
CreateWindowExA
CallWindowProcA
ShowScrollBar

kernel32

VirtualAllocEx
GetModuleFileNameA
GetLocalTime
GetFullPathNameA
LoadLibraryA
ExitProcess
GetLocaleInfoA

Exports

Exports

_ZkY_tvxIgm@4
pnVBII
Bu7yvfRA1hsG@8
jnWuMB
dzcloHKx@16
n7axaLzaJUk
hUc20XBzeP
GUJQEsv_t
pvP7ogX8nY2

Sections

.text
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 50KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data
.rdata
.rsrc/0/DIALOG/TEXTFILEDLG
.rsrc/0/MANIFEST/1
.xml
.rsrc/0/RCDATA/DVCLAL
.rsrc/0/STRING/4094
.rsrc/0/STRING/4095
.rsrc/1033/BITMAP/BBABORT.bmp
.rsrc/1033/version.txt
.text

Sharing

General

Malware Config

Signatures

Files

959c086a8a160db172e52c3619233413

Headers

File Characteristics

Imports

user32

kernel32

Exports

Exports

Sections

.text Size: 15KB - Virtual size: 15KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 50KB - Virtual size: 86KB

.rsrc Size: 5KB - Virtual size: 4KB

.text
Size: 15KB - Virtual size: 15KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 50KB - Virtual size: 86KB

.rsrc
Size: 5KB - Virtual size: 4KB