26f24b0221f23cbf151beb9705b679f9_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

26f24b0221f23cbf151beb9705b679f9_JaffaCakes118
Size

108KB
MD5

26f24b0221f23cbf151beb9705b679f9
SHA1

8f949fb1112b0115bee35706c9ae8c11995f704d
SHA256

2c47713d85ac99993f6d4c4b3a4bf3a73acebb4dca4c70be0cb97b7046bd1655
SHA512

9e7650eb1253f251aa23b48aea9914cfd9cd5db06ce5bbb83c208dacd3d0a5affdf2f2ac0f4546fe012caefff6c4d3aeae51a0fa25077140776713f498d31ec3
SSDEEP

3072:VwhJhl/spmAYV9EFOQ19X5Ct2tblcb5zAhAy/XtYUgJy/4:VwrEB5cSM9AhX/R

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
26f24b0221f23cbf151beb9705b679f9_JaffaCakes118

Files

26f24b0221f23cbf151beb9705b679f9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d469ea809e55f9013b2a7c1de33b01f4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetMenuState
SendMessageA
DestroyWindow
GetSystemMetrics
InflateRect
MoveWindow
CharUpperA
InvalidateRect
GetMenuItemCount
GetMenuItemID
CheckMenuItem
EnableMenuItem
DrawMenuBar
IsIconic
GetClientRect
DestroyIcon
PostQuitMessage
DefWindowProcA
LoadStringA
GetMenu
GetSubMenu
LoadAcceleratorsA
FindWindowA
GetLastActivePopup
LoadIconA
RegisterClassA
CreateWindowExA
RegisterWindowMessageA
ShowWindow
UpdateWindow
PostMessageA
GetMessageA
IsDialogMessageA
DispatchMessageA
MessageBoxA
wsprintfA
SetCursor
TranslateMessage
SetFocus
LoadCursorA
TranslateAcceleratorA

kernel32

GlobalAlloc

comctl32

ord2
ord6
ord17

shell32

ShellAboutA

advapi32

RegUnLoadKeyA
RegSetValueExA
RegDeleteKeyA
RegCloseKey
RegOpenKeyA
RegEnumKeyA
RegEnumValueA
RegCreateKeyA
RegQueryValueExA
RegSaveKeyA
RegLoadKeyA

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

comdlg32

FindTextA
GetSaveFileNameA
GetOpenFileNameA
PrintDlgA

gdi32

EndPage
EndDoc
StartDocA
GetDeviceCaps
AbortDoc
StartPage
SetBkMode

Sections

.text
Size: 56KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 173B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Pdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d469ea809e55f9013b2a7c1de33b01f4

Headers

File Characteristics

Imports

user32

kernel32

comctl32

shell32

advapi32

version

comdlg32

gdi32

Sections

.text Size: 56KB - Virtual size: 52KB

.rdata Size: 4KB - Virtual size: 173B

.data Size: 12KB - Virtual size: 28KB

.idata Size: 4KB - Virtual size: 3KB

.rsrc Size: 20KB - Virtual size: 19KB

.Pdata Size: 8KB - Virtual size: 4KB

.text
Size: 56KB - Virtual size: 52KB

.rdata
Size: 4KB - Virtual size: 173B

.data
Size: 12KB - Virtual size: 28KB

.idata
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 20KB - Virtual size: 19KB

.Pdata
Size: 8KB - Virtual size: 4KB