341c8fc4f0b33b9d53b96a434ef37c7f_JaffaCakes118

General

Target

341c8fc4f0b33b9d53b96a434ef37c7f_JaffaCakes118
Size

64KB
MD5

341c8fc4f0b33b9d53b96a434ef37c7f
SHA1

d2d433ad67294e125305911024ee5fba919435a0
SHA256

4ed5d08735e5b10b15e0c7b0ab0e5bd2e4d289a32da772b5e4188d63947092b4
SHA512

d20859e0eb461c30c62b83fe172821af6c3baf20bca44d839dc3e9e3efb486467bbfe9f0711a00c63226a580903a7968fa316f7ae3d530242c39d0440a746275
SSDEEP

1536:SUUzejIu3tSglz5sb2KH9yB8FcbMdaUFK:qGxdntB8FcbAaQK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
341c8fc4f0b33b9d53b96a434ef37c7f_JaffaCakes118

Files

341c8fc4f0b33b9d53b96a434ef37c7f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7c6db7fa01b34453e38b58d621cb4118

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteFile
GlobalAlloc
SetWaitableTimer
GetProcAddress
FindFirstFileW
LoadLibraryW
SetCurrentDirectoryW
FreeLibrary
ReadFile
GetLocalTime
VirtualFree
GetFileAttributesW
GlobalAddAtomW
GetCurrentProcessId
CreateProcessW
GlobalDeleteAtom
GlobalUnlock
FindFirstChangeNotificationW
GetUserDefaultLangID
LoadLibraryA
MultiByteToWideChar
VirtualAlloc
lstrcpyW
GetCurrentThreadId

user32

IsDlgButtonChecked
PostThreadMessageW
SetCursorPos
LoadIconW
TranslateMessage
LoadCursorW
OffsetRect
RegisterWindowMessageW
PostQuitMessage
DestroyIcon
DispatchMessageW
RegisterHotKey
CreatePopupMenu
GetWindowRect
SystemParametersInfoW
SendDlgItemMessageW
LoadBitmapW
GetCursorPos
FillRect
ReleaseCapture
SetWindowPos

gdi32

SetDIBits
BitBlt
GetMapMode
CreatePen
SelectObject
CreateDCW
StretchBlt
CreateCompatibleDC
LineTo
GetStockObject
DeleteObject

advapi32

RegDeleteValueW
RegCreateKeyExW
RegSetValueExW

Sections

.text
Size: 52KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

7c6db7fa01b34453e38b58d621cb4118

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 52KB - Virtual size: 48KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 1KB

.text
Size: 52KB - Virtual size: 48KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 1KB