3d70b12afe494d7f70050c0ce8381d84_JaffaCakes118

General

Target

3d70b12afe494d7f70050c0ce8381d84_JaffaCakes118
Size

569KB
MD5

3d70b12afe494d7f70050c0ce8381d84
SHA1

dba04b7ba00a7583452ad076814a02f202a51465
SHA256

4dfb952b0ef3ab20aaf259c319811e118e226713b7c3baf8b2b6fb207aa29b4b
SHA512

214aa1a217926be6c0e6536318d075af9066b3d72a17da146a18961e43a991a7e220677fb0c2f5f4c4540c9d2d8a6d5d487b09dbc01e95e131696bccd7941339
SSDEEP

12288:BFEawwq5gU0cDvr97HMuAeNH8y9g1SyfrmWBH/Y7:BUwq5gU0UAiNH8Ug1zi7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3d70b12afe494d7f70050c0ce8381d84_JaffaCakes118

Files

3d70b12afe494d7f70050c0ce8381d84_JaffaCakes118
.exe windows:4 windows x86 arch:x86

bc2b2b1b3df03da4f69542df7bfc2c99

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetMenuInfo
WinHelpA
EnumWindowStationsA
SetWindowWord
DefDlgProcW
OpenClipboard
IsCharAlphaW
LoadIconA
SetLastErrorEx
MoveWindow
SetWindowContextHelpId
mouse_event
GetThreadDesktop
IsCharAlphaNumericA
SetWindowRgn
TabbedTextOutW
CreatePopupMenu
IsWindowEnabled
DrawTextExA
FindWindowExA
InsertMenuItemA
ShowCaret
WindowFromPoint

oleaut32

SysFreeString
VariantCopy
SafeArrayCreate
VariantChangeType
LoadTypeLi
SafeArrayUnaccessData

ole32

GetRunningObjectTable
CoGetObject

version

VerInstallFileA

kernel32

OpenFile
GlobalReAlloc
QueryDosDeviceA
GetDriveTypeA
GetVersion
lstrcmpiW
WritePrivateProfileStructA
VirtualLock
FindCloseChangeNotification
MoveFileW
CreateNamedPipeW
LocalFileTimeToFileTime
GetConsoleCursorInfo
DebugBreak
GetDiskFreeSpaceExA
RemoveDirectoryW
CancelIo
GetTickCount
WriteConsoleOutputW
UnmapViewOfFile
GlobalFindAtomW
FlushFileBuffers
GetProfileIntA
EnumSystemCodePagesA
SetConsoleMode
GetLargestConsoleWindowSize
FindResourceExW
GetFileInformationByHandle
ExitProcess
WritePrivateProfileSectionW
GlobalFlags
ScrollConsoleScreenBufferA
SetStdHandle
GetLogicalDriveStringsA

Sections

.text
Size: 2KB - Virtual size: 218KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 297KB - Virtual size: 296KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bc2b2b1b3df03da4f69542df7bfc2c99

Headers

File Characteristics

Imports

user32

oleaut32

ole32

version

kernel32

Sections

.text Size: 2KB - Virtual size: 218KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 297KB - Virtual size: 296KB

.rsrc Size: 17KB - Virtual size: 16KB

.text
Size: 2KB - Virtual size: 218KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 297KB - Virtual size: 296KB

.rsrc
Size: 17KB - Virtual size: 16KB