073e55e0d65d4ce38fc4660b81f76f20_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

073e55e0d65d4ce38fc4660b81f76f20_JaffaCakes118
Size

760KB
MD5

073e55e0d65d4ce38fc4660b81f76f20
SHA1

a28d7809a88f474bca31baf15c49bf1dda4effc6
SHA256

411b5223cae8de73f9585a4ad1c718e285b43fdd119e08565c83e5353f1ab030
SHA512

5204335fc84f8ca3f8064792559a258407194c347f54a31ca5f2dc958356ea4495efffedc535ef6ae7abb8ff99a8ad910b470c7e9338f2801bb5633378611670
SSDEEP

12288:R8DtU7LYHQxquQSBGOYnI/fFPQM2tLJz8ChrrgaqOeWAnTdlu5PuDbADNwiGGUl:CDtU7Lew5xOMAJNrgaqO3sTdM5PCbATM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
073e55e0d65d4ce38fc4660b81f76f20_JaffaCakes118

Files

073e55e0d65d4ce38fc4660b81f76f20_JaffaCakes118
.exe windows:5 windows x86 arch:x86

ca1c7853b29bed02bab5cfa77f707413

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy
DeleteCriticalSection
TlsSetValue
lstrlenW
Sleep

user32

GetKeyboardType
WindowFromPoint

advapi32

RegQueryValueExA
RegSetValueExA

oleaut32

SysFreeString
SafeArrayPtrOfIndex
GetErrorInfo

version

VerQueryValueA

gdi32

UnrealizeObject

ole32

CreateStreamOnHGlobal

comctl32

ImageList_SetIconSize

imm32

ImmSetCompositionWindow

Exports

Exports

AhnHSMakeResponse
TerminateHackShield

Sections

.text
Size: 99KB - Virtual size: 252KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 748KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 631KB - Virtual size: 632KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

ca1c7853b29bed02bab5cfa77f707413

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

oleaut32

version

gdi32

ole32

comctl32

imm32

Exports

Exports

Sections

.text Size: 99KB - Virtual size: 252KB

.rsrc Size: 21KB - Virtual size: 46KB

.idata Size: 1KB - Virtual size: 4KB

.data Size: 512B - Virtual size: 748KB

.data Size: 631KB - Virtual size: 632KB

.data Size: 1024B - Virtual size: 4KB

.text
Size: 99KB - Virtual size: 252KB

.rsrc
Size: 21KB - Virtual size: 46KB

.idata
Size: 1KB - Virtual size: 4KB

.data
Size: 512B - Virtual size: 748KB

.data
Size: 631KB - Virtual size: 632KB

.data
Size: 1024B - Virtual size: 4KB