06f862c049a8210b0b64d75fe4f7440c_JaffaCakes118

General

Target

06f862c049a8210b0b64d75fe4f7440c_JaffaCakes118
Size

499KB
MD5

06f862c049a8210b0b64d75fe4f7440c
SHA1

871ce24464f561910c6aea7e0dd7b3eb688c5a44
SHA256

f4bb9e5fef6b1d4b3c381d2ba9262d4c977da7edce28f4d0b4990692631a443c
SHA512

be3a0deefb02070fc5b71042c262b908ac606b115a0128aed17702f3ecb810eede8a11806bedc4b888bad422ddb3813b3c3b3f8f5e367dae51e61c04b3134c00
SSDEEP

6144:ytUFCK1Ca5c828a7+lP4uOHjq+Yz1V16tlSHYvSODYSQ/wpEbt6ky:yKFG2asotlvDtQYpWp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
06f862c049a8210b0b64d75fe4f7440c_JaffaCakes118

Files

06f862c049a8210b0b64d75fe4f7440c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2a9849bfbc5344069cad371500b4190e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetMessageA
DispatchMessageA
LoadAcceleratorsA
TranslateMessage
LoadCursorA
LoadMenuA
RegisterClassExA
BeginPaint
GetClientRect
DrawTextA
EndPaint
PostQuitMessage
SetTimer
DialogBoxParamA
DefWindowProcA
DestroyWindow
EndDialog
SendMessageA
CreateWindowExA
ShowWindow
UpdateWindow
LoadCursorW
LoadBitmapW
MoveWindow
SetWindowPos
InvalidateRect
EnableWindow
FlashWindowEx
GetParent
GetKeyState
DeferWindowPos
SetWindowLongW
GetWindowLongW
DrawFocusRect
IsChild
DrawFrameControl
GetScrollInfo
FindWindowA
GetClassNameA

kernel32

SetLastError
GetCurrentDirectoryA
CreateFileA
GetLastError
lstrcpyA
GetModuleHandleA
lstrcmpA
lstrlenA
GetStartupInfoA
GetVersionExA

gdi32

CreateCompatibleBitmap
SelectObject
DeleteObject
DeleteDC
CreateCompatibleDC

comctl32

ord17

msvcrt

memset
_exit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp

Sections

.text
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 161KB - Virtual size: 161KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 173KB - Virtual size: 173KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 129KB - Virtual size: 129KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2a9849bfbc5344069cad371500b4190e

Headers

File Characteristics

Imports

user32

kernel32

gdi32

comctl32

msvcrt

Sections

.text Size: 33KB - Virtual size: 33KB

.rdata Size: 161KB - Virtual size: 161KB

.data Size: 173KB - Virtual size: 173KB

.rsrc Size: 129KB - Virtual size: 129KB

.text
Size: 33KB - Virtual size: 33KB

.rdata
Size: 161KB - Virtual size: 161KB

.data
Size: 173KB - Virtual size: 173KB

.rsrc
Size: 129KB - Virtual size: 129KB