34abe5ef183acc9d06d2545225077caa_JaffaCakes118

General

Target

34abe5ef183acc9d06d2545225077caa_JaffaCakes118
Size

54KB
MD5

34abe5ef183acc9d06d2545225077caa
SHA1

5e8e4191743c668918719bb1cf5f32e00c62cbd0
SHA256

f981356435a687a62fe1e01a6cf45a3d835182598c387b5089ba5f5583bb0a0b
SHA512

6f0b9dae3fa7c6813c95091e1ee1c93c9045d420c31848ca219aee183eccc58199352a77b28ab5e8bb5d7f2a84502ab1ca06484a647c43f961455288db2cdf0b
SSDEEP

768:h9zr6Q3liQyrc9b2mNeDRoyA4Ezwx01epbnYmiylAjHzANmNe6oNz+xqJgyB:hhrN3V5NebqodnYZzymIWqJgyB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
34abe5ef183acc9d06d2545225077caa_JaffaCakes118

Files

34abe5ef183acc9d06d2545225077caa_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9a135d1f4630e6c42a7f8ea053c40ead

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CopyRect
GetDC
GetWindowTextLengthA
DrawIconEx
GetCursor
InsertMenuA
GetDlgItem
CloseWindow
LoadCursorA
IsMenu
EndDialog
GetWindowTextA
GetFocus
CopyImage
CreateIcon
DrawIcon
LoadMenuA
IsWindow
DialogBoxParamA
DrawTextW
DialogBoxParamW
GetMenu
DrawTextA
CopyIcon

kernel32

GetCurrentProcess
GetStringTypeW
LCMapStringA
GetOEMCP
lstrcpyA
LCMapStringW
GetModuleFileNameA
GetFileType
GetCPInfo
GetStringTypeA
GetStdHandle
MultiByteToWideChar
lstrcpynW
WriteFile
GetVersion
lstrcatA
lstrcpynA
SetFilePointer
CreateFileA
SetHandleCount
GetCommandLineA
GetACP
GetStartupInfoA

comctl32

CreateStatusWindow
ImageList_EndDrag
ImageList_Add
DrawStatusText
ImageList_DrawEx
ImageList_GetIcon
ImageList_Create
ImageList_Destroy
DrawStatusTextW
ImageList_AddIcon
ImageList_DragEnter

advapi32

RegOpenKeyExW
RegEnumKeyExW
RegDeleteValueA
RegEnumKeyW
RegCreateKeyExA
RegDeleteKeyW
RegSetValueW
RegQueryValueExW
RegQueryValueW
RegEnumValueW
RegQueryValueExA
RegOpenKeyW
RegCreateKeyExW

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 47KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9a135d1f4630e6c42a7f8ea053c40ead

Headers

File Characteristics

Imports

user32

kernel32

comctl32

advapi32

Sections

.text Size: 4KB - Virtual size: 3KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 47KB - Virtual size: 140KB

.text
Size: 4KB - Virtual size: 3KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 47KB - Virtual size: 140KB