2bd95b3cb579221084b5791dcfabf408_JaffaCakes118

General

Target

2bd95b3cb579221084b5791dcfabf408_JaffaCakes118
Size

84KB
MD5

2bd95b3cb579221084b5791dcfabf408
SHA1

34985bae884ebb1440d273b338a16b4a9b87836d
SHA256

1bcec83784e028248b24a73ce3be108abcd772170b46973dd006dc42a92ffe4f
SHA512

36fb0ad4fbdce8a9f35e76bab740879979948a76d634faa6fb2c99aa84d3cf8a2e524e2891fccba7b2d3afc6b1d1c3b2ef6a8f1411ce989c50c9272501703208
SSDEEP

1536:3v58s+GWY6Hl7q/k43vHbNPIlhZFOHH00omISH7P:3v5ZWJdq/k43f5cR0omIAP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2bd95b3cb579221084b5791dcfabf408_JaffaCakes118

Files

2bd95b3cb579221084b5791dcfabf408_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b6d8688183a10cff8204354a96753bbf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_GetImageCount
ImageList_LoadImageA
ImageList_ReplaceIcon
ImageList_GetImageInfo
ImageList_Replace
ImageList_EndDrag
ImageList_AddIcon
ImageList_DragEnter
ImageList_GetIconSize
ImageList_Destroy
ImageList_BeginDrag
ImageList_AddMasked
ImageList_Copy
ImageList_LoadImage
ImageList_DragShowNolock
ImageList_GetDragImage
InitCommonControls
ImageList_Merge
ImageList_Create

kernel32

GlobalFree
GlobalAlloc
lstrcatA
GetCPInfo
HeapAlloc
GetLocalTime
lstrcmpA
GetLastError
GetCommandLineA
lstrcmpiA
WideCharToMultiByte
SetLastError
lstrcpyA
GetStdHandle
lstrcpynA
GetStringTypeA
lstrlenA
GetFullPathNameA

user32

DialogBoxParamW
DrawIcon
EndDialog
CopyRect
CopyImage
CopyIcon
AlignRects
AppendMenuW
CloseWindow
DialogBoxParamA
GetDlgItem
AppendMenuA
InsertMenuA
IsMenu
LoadCursorA
DrawIconEx
CalcMenuBar

advapi32

RegQueryValueExA
RegOpenKeyExA
RegFlushKey
RegOpenKeyW
RegDeleteKeyA
RegEnumKeyExA
RegCreateKeyExA
RegCreateKeyExW
RegReplaceKeyA
RegQueryValueExW
RegReplaceKeyW
RegQueryValueW
RegEnumValueW
RegLoadKeyA
RegQueryInfoKeyW
RegEnumKeyExW
RegQueryInfoKeyA
RegDeleteValueA
RegOpenKeyA
RegOpenKeyExW

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 133KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 591B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b6d8688183a10cff8204354a96753bbf

Headers

File Characteristics

Imports

comctl32

kernel32

user32

advapi32

Sections

.text Size: 8KB - Virtual size: 4KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 64KB - Virtual size: 133KB

.rsrc Size: 4KB - Virtual size: 591B

.text
Size: 8KB - Virtual size: 4KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 64KB - Virtual size: 133KB

.rsrc
Size: 4KB - Virtual size: 591B