056ff64abcaf25b47a3ccac5236fe889_JaffaCakes118

General

Target

056ff64abcaf25b47a3ccac5236fe889_JaffaCakes118
Size

72KB
MD5

056ff64abcaf25b47a3ccac5236fe889
SHA1

8121bbbb1422f5d91269ea2a8ce8f3b8f1513e92
SHA256

639254aed501ec3f11512fe533ef39fd5e495492fdee1c4e4323a79a4a3d4f8d
SHA512

f003cbbac3f415788a46d124ac798247d02634c8d175147d29eb1b001fe7a75b4c88dded73a33fe58a567ac7ba8db753373b38ae56b9f0e28bb0e80468a31f2d
SSDEEP

768:lOKlznGnAsMoZnH5XF44Z5iqHlkV4N0LvurBq+k20X2pfQWe0uy/hC2WFxUH87vI:lOKUnXMIH51lHyG0OBqjmWguC12fj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
056ff64abcaf25b47a3ccac5236fe889_JaffaCakes118

Files

056ff64abcaf25b47a3ccac5236fe889_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a6222f73f6314c643c9487a03cb8f41d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameA
FreeLibrary
lstrcmpiA
GetFileAttributesA
SetLastError
GetCommandLineA
GetStdHandle
GetLastError
GetStringTypeA
GetFileSize
GlobalAlloc
GetFileType
GetDateFormatA
lstrcpynA
WideCharToMultiByte
HeapFree
GetCPInfo
HeapAlloc
lstrcpyA
GlobalFree

user32

CloseWindow
GetWindowTextLengthA
DialogBoxParamW
GetDC
IsMenu
AppendMenuW
EndDialog
DrawIcon
InsertMenuA
GetDlgItem
BlockInput
DrawIconEx
AlignRects
GetCursor
LoadMenuA
CalcMenuBar
AppendMenuA
GetFocus

advapi32

RegQueryValueExA
RegDeleteValueA
RegEnumValueA
RegEnumValueW
RegEnumKeyExW
RegQueryValueW
RegEnumKeyExA
RegLoadKeyW
RegEnumKeyW
RegQueryValueExW
RegReplaceKeyW
RegOpenKeyW
RegCreateKeyW
RegQueryValueA
RegCreateKeyExA
RegDeleteKeyW
RegQueryInfoKeyA
RegGetKeySecurity

comctl32

ImageList_Read
ImageList_Copy
ImageList_GetIcon
ImageList_AddMasked
ImageList_Merge
ImageList_Destroy
ImageList_DrawEx
ImageList_LoadImageA
ImageList_AddIcon
ImageList_Draw
ImageList_DragMove
InitCommonControls
ImageList_LoadImage
ImageList_DragLeave
ImageList_LoadImageW
ImageList_GetDragImage
ImageList_DragShowNolock

Sections

.text
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.qdata
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.vdata
Size: 8KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.res
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a6222f73f6314c643c9487a03cb8f41d

Headers

File Characteristics

Imports

kernel32

user32

advapi32

comctl32

Sections

.text Size: 4KB - Virtual size: 1KB

.qdata Size: 52KB - Virtual size: 51KB

.vdata Size: 8KB - Virtual size: 79KB

.res Size: 4KB - Virtual size: 2KB

.text
Size: 4KB - Virtual size: 1KB

.qdata
Size: 52KB - Virtual size: 51KB

.vdata
Size: 8KB - Virtual size: 79KB

.res
Size: 4KB - Virtual size: 2KB