0260fac32c3f02b6b422607ed392ed84_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

0260fac32c3f02b6b422607ed392ed84_JaffaCakes118
Size

356KB
MD5

0260fac32c3f02b6b422607ed392ed84
SHA1

1ff9a6845ae5bac5ea58ea10cdc8f133fdc7d212
SHA256

3fd22a3e2c4f0d69c02e73e7467c23fbb29288a7f646743ce3adc05d8d9d577a
SHA512

b9f1aed835c94956aaf53f994e8a0b042b26ba2fec11b42acdb21a4fcdfeb85568770c0f7c3305a161354d7a160d6a284e8cdbdb0a2b484f6dd8c74f8254ba62
SSDEEP

3072:AHpUgNbWc1g7EIQZ/dXb0gib/HD32Pb/vkDgY4viOEbLZgmmYiCL9hsanpuSM1pJ:Obn2GivM7cX7M1d7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
0260fac32c3f02b6b422607ed392ed84_JaffaCakes118

Files

0260fac32c3f02b6b422607ed392ed84_JaffaCakes118
.exe windows:5 windows x86 arch:x86

3bf55405944bb6c9601f770f89fc4fbf

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

QuerySecurityAccessMask

user32

CharNextW
SetWindowPos
GetKeyboardLayout
RegisterWindowMessageW
LoadImageW
FindWindowW
GetWindowLongW
EnableWindow
IsClipboardFormatAvailable
CloseClipboard
GetWindowPlacement
CharUpperW
GetForegroundWindow
LoadCursorW
LoadAcceleratorsW
GetSystemMenu
DestroyWindow
CheckMenuItem
SetCursor
UpdateWindow
PostQuitMessage
OpenClipboard
RegisterClassExW
IsIconic
DefWindowProcW
SetScrollPos
MoveWindow
GetWindowTextW
CreateIconFromResourceEx
SendMessageW
SetWindowPlacement
SetActiveWindow
InvalidateRect
CreateDialogParamW
CreateWindowExW
GetWindowTextLengthW

msvcrt

strftime

kernel32

IsSystemResumeAutomatic
GetCalendarInfoEx
TerminateJobObject
FindClose
GetModuleHandleW

urlmon

GetClassFileOrMime

powrprof

GetCurrentPowerPolicies

Sections

.text
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

J28m6
Size: 270KB - Virtual size: 270KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3bf55405944bb6c9601f770f89fc4fbf

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

user32

msvcrt

kernel32

urlmon

powrprof

Sections

.text Size: 64KB - Virtual size: 64KB

.data Size: 13KB - Virtual size: 20KB

.idata Size: 1KB - Virtual size: 1KB

J28m6 Size: 270KB - Virtual size: 270KB

.rsrc Size: 3KB - Virtual size: 2KB

.reloc Size: 3KB - Virtual size: 2KB

.text
Size: 64KB - Virtual size: 64KB

.data
Size: 13KB - Virtual size: 20KB

.idata
Size: 1KB - Virtual size: 1KB

J28m6
Size: 270KB - Virtual size: 270KB

.rsrc
Size: 3KB - Virtual size: 2KB

.reloc
Size: 3KB - Virtual size: 2KB