2623762d5aefae8bb21d047f639279ef_JaffaCakes118

General

Target

2623762d5aefae8bb21d047f639279ef_JaffaCakes118
Size

115KB
MD5

2623762d5aefae8bb21d047f639279ef
SHA1

9c738fad885a1a424f2b9bec5257e7a70b0bdedc
SHA256

2d8159e2bead7e2d0ee800be5fe75f8cc8687ffc5e1de217739a910403592b3e
SHA512

f067ae8902fa42183f4393bbdb53a6fc72691f9030ebf67a295a9323bd369cbb9a2f0e8f95fcbfd09c880032ac9a4ec014d0d95b9194d7d0c68153941b77093b
SSDEEP

1536:ebJfeGpIpZevRJUYUW2THYfz6SB7wcK8rlgyD/hhAu:eFmrevRwT4fzT93lgm5h

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2623762d5aefae8bb21d047f639279ef_JaffaCakes118

Files

2623762d5aefae8bb21d047f639279ef_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f63514e28e6133b7fba1188afdabd114

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DialogBoxParamA
InsertMenuA
DrawTextA
DrawIconEx
DrawTextW
CopyRect

kernel32

FindAtomA
FindFirstFileA
GetStdHandle
DeleteFileW
GetConsoleMode
GlobalFree
GetFileSize
GetComputerNameA
GetFileTime
ReadFile
ExitThread
DeleteAtom
CreateThread
GetCommandLineA
GetCPInfo
OpenFileMappingA
GetLastError
Sleep
DeleteFileA
OpenFile
CreateProcessA
ReadConsoleA
SetLastError

comctl32

CreateUpDownControl
CreateStatusWindowW
ImageList_LoadImageA
ImageList_DragEnter
ImageList_GetIconSize
CreateStatusWindow
DllGetVersion
ImageList_Draw
ImageList_Create
ImageList_Add

advapi32

RegDeleteKeyW
RegEnumKeyExA
RegDeleteKeyA
RegDeleteValueW
RegEnumKeyA
RegDeleteValueA
RegCreateKeyA

Sections

.text
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 76KB - Virtual size: 16.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 115B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f63514e28e6133b7fba1188afdabd114

Headers

File Characteristics

Imports

user32

kernel32

comctl32

advapi32

Sections

.text Size: 27KB - Virtual size: 27KB

.data Size: 76KB - Virtual size: 16.6MB

.tls Size: 512B - Virtual size: 115B

.rdata Size: 3KB - Virtual size: 2KB

.idata Size: 1KB - Virtual size: 1KB

.reloc Size: 1KB - Virtual size: 1KB

.rsrc Size: 3KB - Virtual size: 3KB

.text
Size: 27KB - Virtual size: 27KB

.data
Size: 76KB - Virtual size: 16.6MB

.tls
Size: 512B - Virtual size: 115B

.rdata
Size: 3KB - Virtual size: 2KB

.idata
Size: 1KB - Virtual size: 1KB

.reloc
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 3KB - Virtual size: 3KB