eb3d8ebbcf354578f72dc76f19a079d1_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

eb3d8ebbcf354578f72dc76f19a079d1_JaffaCakes118
Size

210KB
MD5

eb3d8ebbcf354578f72dc76f19a079d1
SHA1

ec82bb640a8d7798292afa5bfc5e41328280c346
SHA256

793768df02f6606a9bf29346f67e03a0c8e61ca36bbc5e9d40425d40ab7912f8
SHA512

c3d3fb312362806db9a4e7e7f7d0f39f02154735e1d01b015b476da558e11b28b0af8990a44249a1058683ae06185e4903ce7bbd8c73806d5cbde964cd3324ea
SSDEEP

3072:NLDDMz0d8tzM+9AB+A4cf48TCadh4FOgVExMMpgGULHZwj:NDo08tzM+9yTpwwAxSxMMphc5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
eb3d8ebbcf354578f72dc76f19a079d1_JaffaCakes118

Files

eb3d8ebbcf354578f72dc76f19a079d1_JaffaCakes118
.exe windows:4 windows x86 arch:x86

dc79f22180a76491fabfc0ea8fd40ce7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

shlwapi

SHSetValueA
SHDeleteValueA

kernel32

GetACP
GetProcAddress
GetModuleHandleA
VirtualAllocEx
VirtualAlloc
ExitProcess
GetVersionExA
IsBadReadPtr
LocalAlloc
LoadLibraryA
lstrlenA
ExitThread

advapi32

RegEnumKeyA

gdi32

GetObjectA
GetDIBits
CreateBitmap
CreateDIBitmap
GetClipBox

user32

SetCursor
EndPaint
SetScrollInfo
SetForegroundWindow
IsChild
MsgWaitForMultipleObjects
GetSubMenu
CharNextW
RegisterClassA
GetKeyboardLayoutList
FindWindowA
DispatchMessageW
TrackPopupMenu
BeginPaint
IntersectRect
DrawMenuBar
DispatchMessageA
GetTopWindow
CallNextHookEx
SendMessageW
SetWindowLongW
EnumThreadWindows
PostMessageA
EnableWindow
RedrawWindow
DrawIconEx
GetCapture
EnableScrollBar
GetCursor
OemToCharA
OffsetRect
GetWindowLongA
CharLowerA
IsWindowEnabled
GetMenuState
GetClassNameA
LoadBitmapA
DrawAnimatedRects
IsWindowUnicode
InflateRect
SetScrollPos
SendMessageA
CharUpperBuffA
GetMenuItemInfoA
SetParent
GetSystemMetrics
DefMDIChildProcA
DestroyCursor
SetMenu
RegisterClipboardFormatA
GetKeyNameTextA
WindowFromPoint
GetSysColorBrush
GetScrollPos
CreateWindowExA
GetDesktopWindow
LoadStringA
GetIconInfo
GetWindowRect
GetWindowThreadProcessId
SetActiveWindow
CloseClipboard
GetScrollInfo
IsRectEmpty
MapVirtualKeyA
GetMenuItemCount
CheckMenuItem
SetMenuItemInfoA
GetSysColor
GetDCEx
DrawTextA
PostQuitMessage

Sections

.text
Size: 63KB - Virtual size: 62KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 457B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RSRC8
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RSRC0
Size: 136KB - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.RSRC6
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.RSRC3
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RSRC4
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 992B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dc79f22180a76491fabfc0ea8fd40ce7

Headers

File Characteristics

Imports

shlwapi

kernel32

advapi32

gdi32

user32

Sections

.text Size: 63KB - Virtual size: 62KB

DATA Size: 512B - Virtual size: 457B

.RSRC8 Size: 1KB - Virtual size: 1KB

.RSRC0 Size: 136KB - Virtual size: 136KB

.RSRC6 Size: 2KB - Virtual size: 2KB

.RSRC3 Size: 2KB - Virtual size: 1KB

.RSRC4 Size: 1KB - Virtual size: 1KB

.rsrc Size: 1024B - Virtual size: 992B

.text
Size: 63KB - Virtual size: 62KB

DATA
Size: 512B - Virtual size: 457B

.RSRC8
Size: 1KB - Virtual size: 1KB

.RSRC0
Size: 136KB - Virtual size: 136KB

.RSRC6
Size: 2KB - Virtual size: 2KB

.RSRC3
Size: 2KB - Virtual size: 1KB

.RSRC4
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 1024B - Virtual size: 992B