259dc35483d034842b10f5cc8739b742_JaffaCakes118

General

Target

259dc35483d034842b10f5cc8739b742_JaffaCakes118
Size

87KB
MD5

259dc35483d034842b10f5cc8739b742
SHA1

5527736902663a00232763937be1e1a6610422b6
SHA256

f4e4e9ea260781e9df6fe063e5dd9e44cce7be468261cc728acbe19300870797
SHA512

ff947eb3eb40eaa995b634d3e9ca28a7fc2f2a15d5eda25cf1a8e2402a1b826d9f731284d2fd37b4bfebef9b74d6f0610e295d59fc7ddb69e779ffad80eac298
SSDEEP

1536:nCqdPh5wi97rUxsztM2VTlbVUq9xQuRt6buwWvDR19erHYM:C2h5wi93msziol5oDbtsgrHYM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
259dc35483d034842b10f5cc8739b742_JaffaCakes118

Files

259dc35483d034842b10f5cc8739b742_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ba34f7dd747bbad3fbca0aece0f7c399

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadCursorA
CreateIcon
GetDlgItem
GetMenu
CopyRect
IsWindow
LoadMenuA
GetWindowTextLengthA
CopyImage
AppendMenuW
DrawIcon
InsertMenuA
AlignRects
CalcMenuBar
DrawIconEx
DialogBoxParamW
GetWindowTextA
DrawTextW
IsMenu

advapi32

RegCreateKeyExW
RegReplaceKeyA
RegDeleteKeyA
RegOpenKeyExW
RegLoadKeyA
RegEnumKeyW
RegEnumKeyExA
RegFlushKey
RegEnumValueW
RegLoadKeyW
RegQueryValueW
RegEnumKeyA
RegQueryValueA
RegQueryValueExA
RegCreateKeyExA
RegGetKeySecurity

kernel32

GetDateFormatA
lstrcmpA
GlobalAlloc
lstrcpyA
GetFileSize
GetModuleHandleA
SetLastError
DeleteFileA
lstrlenA
GlobalFree
HeapFree
GetStdHandle
GetModuleFileNameA
GetLocalTime
WideCharToMultiByte
GetStringTypeW
CloseHandle

comctl32

ImageList_Merge
ImageList_GetDragImage
ImageList_Remove
InitCommonControls
ImageList_Replace
ImageList_LoadImageW
ImageList_GetImageRect
ImageList_EndDrag
ImageList_LoadImageA
ImageList_DragShowNolock
ImageList_GetIconSize
ImageList_BeginDrag
ImageList_Destroy
ImageList_Copy
ImageList_GetImageInfo
ImageList_DragLeave
ImageList_Create
ImageList_Draw
ImageList_AddMasked
ImageList_DragEnter

Sections

.PtjXJP
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.XxAE
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vYiCBe
Size: 2KB - Virtual size: 185KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ACXN
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ

.DxfRH
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ba34f7dd747bbad3fbca0aece0f7c399

Headers

File Characteristics

Imports

user32

advapi32

kernel32

comctl32

Sections

.PtjXJP Size: 11KB - Virtual size: 11KB

.XxAE Size: 67KB - Virtual size: 67KB

.vYiCBe Size: 2KB - Virtual size: 185KB

.ACXN Size: - Virtual size: 1KB

.DxfRH Size: 2KB - Virtual size: 1KB

.PtjXJP
Size: 11KB - Virtual size: 11KB

.XxAE
Size: 67KB - Virtual size: 67KB

.vYiCBe
Size: 2KB - Virtual size: 185KB

.ACXN
Size: - Virtual size: 1KB

.DxfRH
Size: 2KB - Virtual size: 1KB