98f960243c6be02082ef3ed5afec730a_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

98f960243c6be02082ef3ed5afec730a_JaffaCakes118
Size

37KB
MD5

98f960243c6be02082ef3ed5afec730a
SHA1

78f6d98367a41200aab307058375d6e9474838fd
SHA256

ad10f806f116fed21a9ea46dba0072e827aa18be269d081805d3f70eec7c8676
SHA512

5a842f0156f6ebd6d24dba8463bdcc243e197937a7a650550fa484806f04b936ccec176f3b70252b0d6f0b877c4e90eb822063aaef48ba08274ea4937ac4bc13
SSDEEP

384:9PMJfOv1zgA+ZB1r/GsnPxmi9Jm9Iac4QbXP4JJAuvFfR8U3c3UUzWSQ2WLU:9k5AgN1rln994rcdP4JZFJ8ULj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
98f960243c6be02082ef3ed5afec730a_JaffaCakes118

Files

98f960243c6be02082ef3ed5afec730a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8978d115d7a864e1e30611eafa4de0b1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CreatePopupMenu
PostMessageA
GetMenuItemInfoA
CheckMenuItem
GetCursorPos
TrackPopupMenu
GetMessageA
CheckDlgButton
SetForegroundWindow
GetDoubleClickTime
SetTimer
KillTimer
DestroyMenu
SetMenuDefaultItem
SetMenuItemInfoA
LoadImageA
wsprintfA
MessageBoxA
DestroyIcon
SendDlgItemMessageA
SetDlgItemTextA
GetDlgItem
GetDC
ReleaseDC
AppendMenuA
DefWindowProcA
PostQuitMessage
EnableWindow
IsDlgButtonChecked
LoadStringA
ShowWindow
WinHelpA
DestroyWindow
FindWindowA
LoadIconA
LoadCursorA
RegisterClassExA
CreateDialogParamA
SendMessageA
IsDialogMessageA
TranslateMessage
DispatchMessageA

kernel32

CloseHandle
lstrcatA
ExitProcess
CreateFileA
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalHandle
GlobalFree
OpenFile
WinExec
lstrcmpiA
GetModuleHandleA
lstrcmpA
lstrcpyA
DeviceIoControl
lstrlenA
FormatMessageA
lstrcpynA
LocalFree
GetCommandLineA
GetStartupInfoA

gdi32

GetBkColor

shell32

Shell_NotifyIconA
ShellExecuteA

comctl32

ImageList_LoadImageA
ImageList_SetOverlayImage
ImageList_GetIcon

advapi32

RegSetValueExA
RegOpenKeyExA
RegOpenKeyA
RegDeleteValueA
RegCreateKeyA
RegQueryValueExA
RegCloseKey

winmm

mixerGetNumDevs
mixerOpen
mixerClose
mixerGetID
waveOutGetDevCapsA
waveOutGetNumDevs
mixerMessage
mixerGetControlDetailsA
mixerGetLineControlsA
mixerGetLineInfoA
mixerGetDevCapsA

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 428B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8978d115d7a864e1e30611eafa4de0b1

Headers

File Characteristics

Imports

user32

kernel32

gdi32

shell32

comctl32

advapi32

winmm

Sections

.text Size: 11KB - Virtual size: 11KB

.data Size: 512B - Virtual size: 428B

.idata Size: 2KB - Virtual size: 2KB

.rsrc Size: 20KB - Virtual size: 20KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 11KB - Virtual size: 11KB

.data
Size: 512B - Virtual size: 428B

.idata
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 20KB - Virtual size: 20KB

.reloc
Size: 1KB - Virtual size: 1KB