2403b7f0b42803e9dcfa69b9317fa681_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2403b7f0b42803e9dcfa69b9317fa681_JaffaCakes118
Size

305KB
MD5

2403b7f0b42803e9dcfa69b9317fa681
SHA1

8db8662c9f4a641b8a4baebadb0f32ed81d74428
SHA256

b93214042b0066a863bd18f7ceefa76837019d55b8e6ad1109feb324c80674b6
SHA512

609a0904de398002abbbb2ae76d96ecb237208744e8e3e67ab483335c262d88970f077295ed9d1258dbca9d548ad2de97b2e4edd8b3baab872c09e7a30d00c12
SSDEEP

6144:gON7O1J0FEBgBVqIi6/5nt9d4FGwqBM+2X9wKqa5l:lZO16FEudBdtDGoBMj9L7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2403b7f0b42803e9dcfa69b9317fa681_JaffaCakes118

Files

2403b7f0b42803e9dcfa69b9317fa681_JaffaCakes118
.exe windows:4 windows x86 arch:x86

481e9eff4402dace950cbb96fde386a8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

IsWindowUnicode
MessageBoxW
GetWindow
SetFocus
SetMenuInfo
SubtractRect
EnableMenuItem
SendNotifyMessageA
GetMenuItemRect
MapVirtualKeyExW
RegisterClassA
DrawFrame
DeferWindowPos
AttachThreadInput
GetDlgItemTextW
SendInput
SetMenuItemInfoW
CloseWindowStation
SendNotifyMessageW
InsertMenuW
GetWindowInfo
GetUserObjectSecurity
CreateMenu
RegisterClassExA
RemovePropA
CallNextHookEx
DlgDirListComboBoxA

kernel32

FreeEnvironmentStringsW
HeapDestroy
GetEnvironmentStringsW
InitializeCriticalSection
InterlockedIncrement
ExpandEnvironmentStringsA
CreateWaitableTimerW
EnumDateFormatsA
GetSystemTime
DeleteCriticalSection
GetCurrentProcess
TlsAlloc
OpenProcess
DeleteAtom
WriteFileEx
SetLastError
GetOEMCP
GetStartupInfoA
QueryPerformanceCounter
OpenMutexA
TerminateProcess
WaitCommEvent
SetEnvironmentVariableA
OpenEventA
MultiByteToWideChar
GetSystemTimeAsFileTime
WideCharToMultiByte
SetConsoleTitleW
HeapReAlloc
GetCommandLineA
GetModuleHandleA
LeaveCriticalSection
CloseHandle
TlsGetValue
SetFilePointer
GetStdHandle
GetCurrentProcessId
HeapCreate
GetStringTypeW
CompareStringW
CreateMutexA
HeapAlloc
SetStdHandle
GetEnvironmentStrings
LCMapStringW
GetCPInfo
EnumCalendarInfoExA
GetPrivateProfileSectionNamesA
ReadConsoleOutputCharacterA
GetFileType
GetLocalTime
FlushFileBuffers
MapViewOfFile
WriteFile
RtlUnwind
FreeEnvironmentStringsA
GetCurrentThreadId
HeapFree
GetACP
GetCurrentThread
GetModuleFileNameA
GetVersion
GetLastError
VirtualQuery
LocalFlags
ExitProcess
ReadFile
TlsFree
EnterCriticalSection
GetProcAddress
InterlockedExchange
GetCalendarInfoW
GetStringTypeA
GetTimeZoneInformation
LoadLibraryA
SetHandleCount
TlsSetValue
VirtualFree
IsBadWritePtr
InterlockedDecrement
TryEnterCriticalSection
GlobalDeleteAtom
CompareStringA
VirtualAlloc
LCMapStringA
UnhandledExceptionFilter
SetConsoleMode
lstrcmp
GetTickCount

comctl32

InitCommonControlsEx

Sections

.text
Size: 114KB - Virtual size: 113KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 171KB - Virtual size: 170KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

481e9eff4402dace950cbb96fde386a8

Headers

File Characteristics

Imports

user32

kernel32

comctl32

Sections

.text Size: 114KB - Virtual size: 113KB

.rdata Size: 4KB - Virtual size: 17KB

.data Size: 171KB - Virtual size: 170KB

.rsrc Size: 15KB - Virtual size: 14KB

.text
Size: 114KB - Virtual size: 113KB

.rdata
Size: 4KB - Virtual size: 17KB

.data
Size: 171KB - Virtual size: 170KB

.rsrc
Size: 15KB - Virtual size: 14KB