36fcbc2d1a12bc179712eec7295fe281_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

36fcbc2d1a12bc179712eec7295fe281_JaffaCakes118
Size

119KB
MD5

36fcbc2d1a12bc179712eec7295fe281
SHA1

eb91f7ef7d5a31bb9fc5a21d678ba165c2221a2b
SHA256

b78e15e83787c03094f69beddc4fe0bb3d1c0d904fd226c7ee034dff73f8bd33
SHA512

77dbfec14d8a1ad7221954b28c66d872e3a20e928e2636929bc7999c61aa53f240f3439354a8cdb4d6a5506958cc635a573ef767574765036bfcbae1df9ca5ef
SSDEEP

1536:M5nASW1LiGf1qo3snx/Fzf0b8+ki+u/uTKCOs5NbQzpslwp:+nA/1LiGf1Lsntth+kiZueA5xQtslG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
36fcbc2d1a12bc179712eec7295fe281_JaffaCakes118

Files

36fcbc2d1a12bc179712eec7295fe281_JaffaCakes118
.exe windows:4 windows x86 arch:x86

98576d03f1ac3dd84fff26ca08da4b76

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeLibrary
GetACP
LocalReAlloc
GlobalAlloc
DeleteCriticalSection
GetModuleHandleA
GetLastError
GetFileType
ExitThread
VirtualAllocEx
ExitProcess
GetLocalTime
GetProcAddress
FormatMessageA
RaiseException
WaitForSingleObject
VirtualAlloc

comctl32

ImageList_Read
ImageList_Add
ImageList_Destroy
ImageList_DragShowNolock

gdi32

GetClipBox
SetBkColor
CopyEnhMetaFileA
LineTo
CreatePenIndirect
GetPixel

user32

DrawFrameControl
DispatchMessageA
PostMessageA
SetWindowsHookExA
GetForegroundWindow
GetMenuItemInfoA
SetScrollRange
SetCapture
SetCursor
GetKeyboardType
IsRectEmpty
LoadIconA
OffsetRect
EndPaint
InvalidateRect
DispatchMessageW
GetKeyboardLayout
EnableWindow
CharUpperBuffA
IsWindowUnicode
PeekMessageA
UpdateWindow
GetKeyNameTextA
InflateRect
GetSystemMenu
CallNextHookEx
MoveWindow
ShowScrollBar
GetDCEx
GetMenuStringA
CreateMenu
BeginPaint
PostQuitMessage
GetWindowPlacement
IsZoomed
PtInRect
DestroyWindow
SetRect
DrawTextA
EmptyClipboard
CreatePopupMenu
GetSystemMetrics
DrawIcon
SendMessageW
RemoveMenu
GetWindowLongA
CallWindowProcA
LoadBitmapA
GetWindowLongW
GetMenuItemCount
GetKeyState
SendMessageA
GetClientRect
GetClipboardData
CreateIcon
GetMessagePos
SetWindowPlacement
GetMenuItemID
CharToOemA
MapWindowPoints
GetSysColor
TranslateMDISysAccel
EqualRect
DestroyIcon
DrawIconEx
RegisterWindowMessageA
FindWindowA
SetWindowTextA
InsertMenuItemA
EnableScrollBar
GetKeyboardLayoutList
OpenClipboard
IsWindowVisible
GetFocus
UnregisterClassA
RegisterClassA
GetLastActivePopup
SetForegroundWindow
DefWindowProcA
GetCapture
DrawAnimatedRects
ChildWindowFromPoint
GetCursorPos
SetWindowLongW
ScrollWindow
EnumThreadWindows
LoadKeyboardLayoutA
UnhookWindowsHookEx
FillRect
GetScrollPos
CharLowerBuffA
DestroyCursor

shlwapi

SHStrDupA
SHQueryValueExA
PathFileExistsA

shell32

SHFileOperationA
SHGetFileInfoA
Shell_NotifyIconA
SHGetSpecialFolderLocation

version

VerQueryValueA

Sections

.text
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.edata
Size: 82KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

BSS
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

98576d03f1ac3dd84fff26ca08da4b76

Headers

File Characteristics

Imports

kernel32

comctl32

gdi32

user32

shlwapi

shell32

version

Sections

.text Size: 32KB - Virtual size: 32KB

.edata Size: 82KB - Virtual size: 81KB

BSS Size: 4KB - Virtual size: 3KB

.text
Size: 32KB - Virtual size: 32KB

.edata
Size: 82KB - Virtual size: 81KB

BSS
Size: 4KB - Virtual size: 3KB