430c92860fcc41689636bd728b4161b8_JaffaCakes118

General

Target

430c92860fcc41689636bd728b4161b8_JaffaCakes118
Size

131KB
MD5

430c92860fcc41689636bd728b4161b8
SHA1

b163350ac53b9aca16ec49132538e29843a64dd7
SHA256

64a729fbf1886444ec3c811308ae09f11548cc240cf4df47d8874e774309e659
SHA512

bcc2242c6d05de252c3db7eeac4df3280db2df8f5a4024a9b09508c84a0cbbf73a53186564cfcef9c3abd8af798f8a445363cb04a7fe0c6077b5c424d214e1f5
SSDEEP

3072:jrwa+y4oRrZVBIO4/4Dm2NuLgEu+CVD50SQi:jrwa1RrZVBIOqamdgvDaS5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
430c92860fcc41689636bd728b4161b8_JaffaCakes118

Files

430c92860fcc41689636bd728b4161b8_JaffaCakes118
.exe windows:1 windows x86 arch:x86

51ccaab363d0ce1d04adff575a09a0f3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_adjust_fdiv
exit
_controlfp
__p__commode
_acmdln
__getmainargs
__set_app_type
_except_handler3
_initterm
_XcptFilter
__setusermatherr
__p__fmode
memcpy
_exit

gdi32

DeleteObject
CreateCompatibleDC
RestoreDC
SetBkMode
GetStockObject
DeleteDC
SetBkColor
CreateSolidBrush
BitBlt

kernel32

HeapCreate
GetModuleHandleA
GetStartupInfoA
SetErrorMode
HeapAlloc
VirtualProtect
GetLastError

user32

SetWindowLongA
ReleaseDC
GetClientRect
GetWindowDC
DefWindowProcA
SetDlgItemTextA
EndPaint
CheckMenuRadioItem
GetClassNameA
GetDlgItem
FindWindowA
DefMDIChildProcA
PtInRect
SetCapture
SendMessageA
GetDlgCtrlID
GetMenu
CallWindowProcA
GetParent
IsZoomed
EnumChildWindows
UnionRect
EndDeferWindowPos
ChildWindowFromPoint
DefDlgProcA
LoadAcceleratorsA
InsertMenuA
DestroyWindow
DestroyIcon
SetPropA
GetSystemMetrics
LoadImageA
InvalidateRect
LoadIconA
ScreenToClient
EndDialog
DrawFrameControl
SetTimer
GetWindowRect
GetCapture
CopyRect
GetDC
ModifyMenuA
GetSysColor
GetWindowLongA
MoveWindow
OffsetRect
GetSubMenu
ShowWindow
ClientToScreen
PostMessageA

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 83KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

51ccaab363d0ce1d04adff575a09a0f3

Headers

File Characteristics

Imports

msvcrt

gdi32

kernel32

user32

Sections

.text Size: 10KB - Virtual size: 10KB

.rdata Size: 9KB - Virtual size: 9KB

.data Size: 83KB - Virtual size: 128KB

.rsrc Size: 27KB - Virtual size: 26KB

.text
Size: 10KB - Virtual size: 10KB

.rdata
Size: 9KB - Virtual size: 9KB

.data
Size: 83KB - Virtual size: 128KB

.rsrc
Size: 27KB - Virtual size: 26KB