3aa7dd7aad037470decad8e4d82dbd34_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

3aa7dd7aad037470decad8e4d82dbd34_JaffaCakes118
Size

193KB
MD5

3aa7dd7aad037470decad8e4d82dbd34
SHA1

1ee58253b2ab20678e8027f7954553d3e77dd130
SHA256

958cf588601fe90bda61f8a74acf33e92976c371dd3077eaf298eddea284634e
SHA512

e27d85dfb9045b6d90744bedfff181e3352043e8b847071ceeaa24470e8f1c0919c1cf9813b67cac80c656143107e1b67cd1d927a9c1adbc26edbc2913aa27b1
SSDEEP

6144:uapbpPJlGB61DpI5FKhdVz5F5D2mF5oJ:uEFJA01Dm5FKhdfVFq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3aa7dd7aad037470decad8e4d82dbd34_JaffaCakes118

Files

3aa7dd7aad037470decad8e4d82dbd34_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e59ddb45668d76479f95adc64fb5f197

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

kernel32

SetTapeParameters
GetLocalTime
ClearCommError
GetWindowsDirectoryA
GetVersion
FindClose
EnumResourceNamesA
InterlockedExchange
ExitProcess
Sleep
GetCurrentProcessId
FindFirstFileA

shell32

SHGetPathFromIDListA
SHGetMalloc
SHGetSpecialFolderLocation

advapi32

RegOpenKeyExA
RegCloseKey
RegOpenKeyA
RegQueryValueExA
RegCreateKeyExA
RegDeleteKeyA
RegEnumKeyExA
RegSetValueExA

oleacc

LresultFromObject
CreateStdAccessibleObject

user32

ReleaseCapture
GetWindowInfo
GetWindowLongA
GetDlgItem
GetSysColor
SetWindowPos
SetCursor
SetWindowLongA
LoadCursorA
GetDC
IsWindow
MoveWindow
FillRect
ReleaseDC
SetCapture

winmm

mciSendCommandA
sndPlaySoundA

ole32

CoTaskMemFree
ProgIDFromCLSID
StringFromCLSID

gdi32

SetTextColor
SelectObject
EnumFontFamiliesExA
TextOutA
Rectangle
SetBkMode
DeleteObject
GetObjectA
GetTextExtentPoint32A
SaveDC
CreateRectRgn
CreateCompatibleDC
CreateFontIndirectA
BitBlt
RestoreDC
GetStockObject
DeleteMetaFile
GetDeviceCaps
CreateSolidBrush
DeleteDC
CreateCompatibleBitmap

Sections

.text
Size: 166KB - Virtual size: 166KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lib
Size: 512B - Virtual size: 228KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e59ddb45668d76479f95adc64fb5f197

Headers

File Characteristics

Imports

version

kernel32

shell32

advapi32

oleacc

user32

winmm

ole32

gdi32

Sections

.text Size: 166KB - Virtual size: 166KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 22KB - Virtual size: 22KB

.lib Size: 512B - Virtual size: 228KB

.text
Size: 166KB - Virtual size: 166KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 22KB - Virtual size: 22KB

.lib
Size: 512B - Virtual size: 228KB