35d25305e8b72224c21965382a0f4f99_JaffaCakes118

General

Target

35d25305e8b72224c21965382a0f4f99_JaffaCakes118
Size

47KB
MD5

35d25305e8b72224c21965382a0f4f99
SHA1

6ddf69f2b7b38f082f3c7a928379d068ad292f2e
SHA256

e775c3cbc7254851ef72dd47e35ebeee15f78fedde6ccb2dc8b7154904d96408
SHA512

6f21d1fd54003e448c41e41b4940568e2093aad125a24692fc511d96ee9267ed0b4b293fb1fe451ef6c06f82b92423596be42832a4ea8e98925571ad5372c26b
SSDEEP

768:y/pFqEP768GyZraHwrscNPvPkfaxOY7KpgBTk9peX+eFkh2ECXQMsiJcZPw:2vqEP7kmWHqscN38fo7KpgBTkzI+ebqM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
35d25305e8b72224c21965382a0f4f99_JaffaCakes118

Files

35d25305e8b72224c21965382a0f4f99_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ca99400c94b87106510acc0681523762

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA
ArrangeIconicWindows
CharUpperA
SetFocus
CharNextA
FlashWindow
RegisterWindowMessageA
ShowWindow
CharLowerA
KillTimer
GetSysColorBrush
ShowCursor
GetMessagePos
SetWindowTextA
GetMenuItemCount
GetDesktopWindow
ReleaseDC
GetParent

kernel32

lstrlenA
GlobalDeleteAtom
GetCommandLineA
lstrcatA
SetLastError
LoadLibraryA
GlobalAddAtomA
GetProcAddress
OutputDebugStringA
GlobalFindAtomA
FreeConsole
Sleep
GetLastError
GetConsoleCP
GetConsoleOutputCP
FindResourceA
AllocConsole
CopyFileA
FreeLibrary

shell32

DragFinish
ShellAboutA

gdi32

DeleteDC
SetBkMode
CreateCompatibleDC
SetTextColor
GetObjectA
GdiGetBatchLimit
SelectObject
DeleteObject
EndPage
CreateSolidBrush

ole32

CoFreeAllLibraries
CoFreeUnusedLibraries

comctl32

InitCommonControls
FlatSB_ShowScrollBar
MakeDragList
FlatSB_GetScrollPos
DrawInsert
FlatSB_GetScrollRange
FlatSB_GetScrollProp

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 920B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ca99400c94b87106510acc0681523762

Headers

File Characteristics

Imports

user32

kernel32

shell32

gdi32

ole32

comctl32

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 1024B - Virtual size: 920B

.rsrc Size: 39KB - Virtual size: 39KB

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 1024B - Virtual size: 920B

.rsrc
Size: 39KB - Virtual size: 39KB