0e254fd4fcef454153e84fc188ab0da0_JaffaCakes118

General

Target

0e254fd4fcef454153e84fc188ab0da0_JaffaCakes118
Size

22KB
MD5

0e254fd4fcef454153e84fc188ab0da0
SHA1

1bc1b26ff80f623a12a4634d82427a3e2d249be9
SHA256

8763d4d9fc440c59aaa8d6eca07bb8a4dd2a3ac8d64dd348d25215503debe1dc
SHA512

2df3ea665588547c6b917f921b1a3bf4b69ddb3c8163b89e2e802e4f2db284ebf994a0f29b220688d898d0729dd5c171c9f734e001e93c2df953378ca1d907b6
SSDEEP

384:TW3EpLVLadA6ORZC+unZ4otindn6idEFmr4ylck9lJ/a5dzWJrd1kF:TW3EpLVLadA6g4Zvtid6KXr1lc0lU5dj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0e254fd4fcef454153e84fc188ab0da0_JaffaCakes118

Files

0e254fd4fcef454153e84fc188ab0da0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d37521a94142174b1126dafbd41f86a2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcess
lstrcatA
GetACP
GetModuleFileNameA
SetHandleCount
MultiByteToWideChar
lstrcpynA
GetStringTypeW
GetOEMCP
TerminateProcess
GetStartupInfoA
lstrcpyA
LCMapStringW
GetFileType
GetCommandLineA
CreateFileA
GetVersion
GetStdHandle
WriteFile
LCMapStringA
lstrcpynW
GetStringTypeA

user32

GetDlgItem
EndDialog
GetMenu
GetDC
DrawTextA
GetWindowTextA
LoadMenuA
GetWindowTextLengthA
DrawIcon
DrawTextW
GetCursor
CopyRect
CopyIcon
InsertMenuA
IsWindow
LoadCursorA
DialogBoxParamA
CreateIcon
CloseWindow
CopyImage
DrawIconEx
IsMenu
GetFocus
DialogBoxParamW

comctl32

ImageList_AddIcon
CreateStatusWindow
CreateStatusWindowW
DllGetVersion
DrawStatusTextW
ImageList_Copy
CreateMappedBitmap
ImageList_Create
ImageList_EndDrag
ImageList_LoadImageW

advapi32

RegOpenKeyExA
RegCreateKeyA
RegQueryValueExW
RegEnumKeyExA
RegQueryValueW
RegEnumValueW
RegEnumKeyExW
RegCreateKeyExW
RegQueryValueExA
RegDeleteValueA
RegDeleteKeyA

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 17.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d37521a94142174b1126dafbd41f86a2

Headers

File Characteristics

Imports

kernel32

user32

comctl32

advapi32

Sections

.text Size: 3KB - Virtual size: 2KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 16KB - Virtual size: 17.5MB

.text
Size: 3KB - Virtual size: 2KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 16KB - Virtual size: 17.5MB