f9f1b219b9b217e1c59636e74025bc43_JaffaCakes118

General

Target

f9f1b219b9b217e1c59636e74025bc43_JaffaCakes118
Size

152KB
MD5

f9f1b219b9b217e1c59636e74025bc43
SHA1

96533036ca3955680dd29edadb6df7734d9ac0c5
SHA256

cfffc60cce21e5a074055a31aa3d078048bcf22f8b85f07ad2b81fb170b20d0f
SHA512

54aa9f7a0b8c470629e6358d4bc074a594a0474e229ede59d6418266a9fc22401c42f406bd202b86f4b25d388cf938bf2e3935699475bd5c7e1fc886315b6a99
SSDEEP

3072:ZjjU0SwwKOI9mN7U+N7WGj2vOzS4VBWVwu:Z0wwKOiJ+NTfbBW+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f9f1b219b9b217e1c59636e74025bc43_JaffaCakes118

Files

f9f1b219b9b217e1c59636e74025bc43_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c0092365c38f597e4eb31cd9c4e74fb4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CreateBitmap
RestoreDC

user32

CharLowerA
CreatePopupMenu
IsChild
EndDeferWindowPos
GetMenuState
CreateIcon
GetKeyNameTextA
IsMenu
GetMenuStringA
DefWindowProcA
SetWindowLongA
DrawIcon
GetCursorPos
GetMenu
GetSubMenu
BeginPaint
GetPropA
GetClassLongA
GetMenuItemInfoA
DrawIconEx
CreateMenu
GetMenuItemID
MessageBoxA
EnableScrollBar
GetCursor
CharNextA

kernel32

GetLocaleInfoA
CreateEventA
GetModuleHandleA
GlobalFindAtomA
ResetEvent
SetThreadLocale
GetCurrentProcess
GetACP
ExitThread
GetThreadLocale
GetUserDefaultLCID
CloseHandle
GetCurrentThread
GlobalAlloc
CompareStringA
LoadLibraryExA
FormatMessageA
LoadLibraryA
LockResource
lstrcatA
GlobalAddAtomA
WriteFile
DeleteCriticalSection
CreateFileA
HeapDestroy
SetErrorMode
FreeLibrary
RaiseException
lstrcmpiA
GetEnvironmentStrings
ExitProcess
Sleep
DeleteFileA
LocalAlloc
LoadResource
FreeResource
GetLastError
ReadFile
InitializeCriticalSection
GetFileAttributesA
MoveFileExA
WideCharToMultiByte
GetDiskFreeSpaceA
EnterCriticalSection
HeapAlloc
LocalFree
SetEvent
SetLastError
GetCommandLineA
GetProcessHeap
CreateThread
GetDateFormatA
lstrcpyA
SetHandleCount
WaitForSingleObject
GetStringTypeW
VirtualAlloc
SizeofResource

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 131KB - Virtual size: 130KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.init
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c0092365c38f597e4eb31cd9c4e74fb4

Headers

File Characteristics

Imports

gdi32

user32

kernel32

Sections

.text Size: 12KB - Virtual size: 11KB

.rdata Size: 2KB - Virtual size: 110KB

DATA Size: 131KB - Virtual size: 130KB

.init Size: 5KB - Virtual size: 4KB

.text
Size: 12KB - Virtual size: 11KB

.rdata
Size: 2KB - Virtual size: 110KB

DATA
Size: 131KB - Virtual size: 130KB

.init
Size: 5KB - Virtual size: 4KB