622cc6736e50491df55259246336f785_JaffaCakes118

General

Target

622cc6736e50491df55259246336f785_JaffaCakes118
Size

670KB
MD5

622cc6736e50491df55259246336f785
SHA1

48f8caae5357885829fb6f8147425115c9d79a5a
SHA256

93b2b3eeb967d14a99dafc21a362b441fffc4ccaac6b207d3c3f9c7e99562fc9
SHA512

49a58be312b36a54fd70f951681743972e7704faddc0c4f262ac8a444d07221e082b083839a58a2dee089dbcb04e692f8e8827b36c0269de7d8bf51e45587bdd
SSDEEP

12288:xiPk/FWVA9Yc1DOmjHgBj9JAPyXqsfyXFA37EQiegCQM:mk/FYA9JxDjHA0PyasfyVSpie

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
622cc6736e50491df55259246336f785_JaffaCakes118

Files

622cc6736e50491df55259246336f785_JaffaCakes118
.exe windows:6 windows x86 arch:x86

3089a9d574fbdd3e5b17b14ad1d3b476

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsProcessorFeaturePresent
ChangeTimerQueueTimer
GetPrivateProfileSectionNamesA

comctl32

InitCommonControlsEx

user32

PostMessageW
GetWindowPlacement
CheckRadioButton
EndDialog
RegisterClassW
MessageBoxW
InvertRect
MoveWindow
IsDlgButtonChecked
DrawTextW
FrameRect
GetMessageW
ShowWindow
DialogBoxParamW
TranslateAcceleratorW
IsZoomed
DefWindowProcW
GetWindowRect
FillRect
InvalidateRect
IntersectRect
GetMenu
LoadCursorW
SendMessageW
SetRect
OffsetRect
EnableMenuItem
EndPaint
SetCapture
CheckDlgButton
LoadBitmapW
LoadAcceleratorsW
GetDesktopWindow
ReleaseDC
GetClientRect
GetForegroundWindow
PtInRect
GetDlgItemTextW
GetDC
wsprintfW
DispatchMessageW
DrawMenuBar
SetDlgItemTextW
PeekMessageW
DestroyWindow
GetSystemMetrics
LoadIconW
ReleaseCapture
GetSubMenu
WinHelpW
GetDlgItem
BeginPaint
UpdateWindow
WaitMessage
UnionRect
CreateWindowExW

iphlpapi

DeleteIpNetEntry

imm32

ImmSetHotKey

Sections

.text
Size: 235KB - Virtual size: 234KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 237KB - Virtual size: 609KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 172KB - Virtual size: 171KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3089a9d574fbdd3e5b17b14ad1d3b476

Headers

File Characteristics

Imports

kernel32

comctl32

user32

iphlpapi

imm32

Sections

.text Size: 235KB - Virtual size: 234KB

.data Size: 237KB - Virtual size: 609KB

.rdata Size: 25KB - Virtual size: 24KB

.rsrc Size: 172KB - Virtual size: 171KB

.text
Size: 235KB - Virtual size: 234KB

.data
Size: 237KB - Virtual size: 609KB

.rdata
Size: 25KB - Virtual size: 24KB

.rsrc
Size: 172KB - Virtual size: 171KB