38b178fccff0344fa88c60e7a779f184_JaffaCakes118

General

Target

38b178fccff0344fa88c60e7a779f184_JaffaCakes118
Size

90KB
MD5

38b178fccff0344fa88c60e7a779f184
SHA1

3c53572022998449d22f2643d2d5326d6f0742d0
SHA256

f0354732f8bd76665caa0966184f70b7af62d8b81fabc2584916d5bb9f934ec7
SHA512

fb76640297b148fecea1f416b09536b06499d14ee8c7219ed4d51a8888ccd239a1f28c46c1a9cfa0a50daa54c9e35d66b2766febdefd094ac56d89f68129d1a4
SSDEEP

1536:qpHO7Sbf8F8fhJHVTtchQxK8u9L56Nkf08yFdI5nd5yRi0g:qpHOu78SfhjyQ9McG08yFG9DaiH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
38b178fccff0344fa88c60e7a779f184_JaffaCakes118

Files

38b178fccff0344fa88c60e7a779f184_JaffaCakes118
.exe windows:4 windows x86 arch:x86

28d6b39f1cd454382545f1895ef3b941

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

BlockInput
GetMenu
GetDC
InsertMenuA
GetCursor
IsWindow
DialogBoxParamW
GetFocus
AppendMenuA
DrawTextW
CopyIcon
EndDialog
GetWindowTextA
CreateIcon
CloseWindow
AppendMenuW
GetDC
DrawTextW
IsWindow
AppendMenuA
CopyIcon
GetWindowTextA
DrawIcon
CopyImage
CopyRect
AppendMenuW
LoadMenuA
DrawIconEx
EndDialog
DrawTextA
GetMenu
IsMenu
GetWindowTextLengthA

kernel32

GetStdHandle
SetLastError
lstrcatA
GetLastError
lstrcmpA
GlobalAlloc
CloseHandle
GetDateFormatA
GetStringTypeA
GetModuleHandleA
GetFileType
lstrcpyA
Sleep
lstrlenA
GetFileSize
WideCharToMultiByte
GetCPInfo
FreeLibrary
GetFileAttributesA
HeapFree

comctl32

ImageList_DragShowNolock
ImageList_GetImageInfo
ImageList_LoadImageW
ImageList_Replace
ImageList_GetImageRect
ImageList_AddMasked
ImageList_GetImageCount
ImageList_GetIcon
ImageList_EndDrag
ImageList_ReplaceIcon
ImageList_Copy
ImageList_DrawEx
ImageList_AddIcon
ImageList_LoadImageA
ImageList_DragMove
ImageList_DragLeave
ImageList_Remove
InitCommonControls

advapi32

RegOpenKeyExW
RegQueryValueExA
RegReplaceKeyA
RegQueryValueExW
RegOpenKeyA
RegEnumKeyA
RegReplaceKeyW
RegEnumKeyExW
RegDeleteKeyW
RegCreateKeyExW
RegGetKeySecurity
RegOpenKeyW
RegEnumValueA
RegLoadKeyW
RegDeleteValueA
RegLoadKeyA
RegEnumKeyExA
RegDeleteKeyA
RegCreateKeyW

Sections

.cnCc
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.EMKii
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.qqqqh
Size: 512B - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.qDqhwn
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

28d6b39f1cd454382545f1895ef3b941

Headers

File Characteristics

Imports

user32

kernel32

comctl32

advapi32

Sections

.cnCc Size: 15KB - Virtual size: 14KB

.EMKii Size: 68KB - Virtual size: 67KB

.qqqqh Size: 512B - Virtual size: 144KB

.qDqhwn Size: 3KB - Virtual size: 2KB

.cnCc
Size: 15KB - Virtual size: 14KB

.EMKii
Size: 68KB - Virtual size: 67KB

.qqqqh
Size: 512B - Virtual size: 144KB

.qDqhwn
Size: 3KB - Virtual size: 2KB