36cd5a945005341a4e9396288b18e369_JaffaCakes118

General

Target

36cd5a945005341a4e9396288b18e369_JaffaCakes118
Size

50KB
MD5

36cd5a945005341a4e9396288b18e369
SHA1

75f1f6c98570b0d9c9675689dd1c7becded73205
SHA256

89923c3ccb74c062074e8285e36719c39a00f31a758c46b32d73f3cfa2fcec3b
SHA512

3ec32493b6da0c55e735a6d7e490449f74fc86a7010471e1d819ba67fd0153b8fc66467ac0611cffe8cfa2d2b1202a929637595ac12136f0826a80b27ab931f3
SSDEEP

768:v8DY+89DMxQRQZAkFQISZ4twnkGLaZNcqpSPVgvxPbbHuIKAlLwY4CE5E0gX:cY+jxQRQCbIlKku8c/PVg5O1AWvfgX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
36cd5a945005341a4e9396288b18e369_JaffaCakes118

Files

36cd5a945005341a4e9396288b18e369_JaffaCakes118
.exe windows:4 windows x86 arch:x86

59ea2983e1109317e9b7e9dcd64ebab1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

IsMenu
LoadCursorA
DialogBoxParamA
GetMenu
CopyIcon
GetWindowTextA
CreateIcon
CopyImage
DrawIconEx
CloseWindow
GetDC
GetWindowTextLengthA
GetFocus
DrawTextA
InsertMenuA
EndDialog
DrawTextW
GetDlgItem
IsWindow
DialogBoxParamW
GetCursor
DrawIcon

kernel32

GetOEMCP
lstrcpynA
GetVersion
GetCPInfo
GetCurrentProcess
lstrcpyA
SetHandleCount
MultiByteToWideChar
GetACP
GetStdHandle
TerminateProcess
GetModuleFileNameA
GetStringTypeA
GetFileType
SetFilePointer
WriteFile
lstrcatA
GetStringTypeW
lstrcpynW
LCMapStringW
GetCommandLineA

comctl32

InitCommonControls
ImageList_Create
ImageList_EndDrag
ImageList_AddIcon
MenuHelp
DrawStatusText
DrawStatusTextW
CreateUpDownControl
ImageList_Destroy
ImageList_Draw
CreateToolbar
ImageList_Add
CreateStatusWindowW

advapi32

RegCreateKeyW
RegOpenKeyExA
RegEnumValueW
RegOpenKeyW
RegEnumValueA
RegCreateKeyExA
RegDeleteValueA
RegCreateKeyA
RegDeleteKeyA
RegSetValueW
RegDeleteValueW
RegQueryValueExA
RegQueryValueExW

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 44KB - Virtual size: 17.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

59ea2983e1109317e9b7e9dcd64ebab1

Headers

File Characteristics

Imports

user32

kernel32

comctl32

advapi32

Sections

.text Size: 2KB - Virtual size: 2KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 44KB - Virtual size: 17.9MB

.text
Size: 2KB - Virtual size: 2KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 44KB - Virtual size: 17.9MB