4ba6975c893607474d066f79a6be796d_JaffaCakes118

General

Target

4ba6975c893607474d066f79a6be796d_JaffaCakes118
Size

138KB
MD5

4ba6975c893607474d066f79a6be796d
SHA1

9344f0884ce4fa58aedd177b66da647dec1501fe
SHA256

282f254d69661c55fcd7c04ec3a68424f47d9f76988ac46f0e08f117f2d0b44e
SHA512

73d8973ab1deef1151b5586afe5fdece0e947c0c0fa35ed9ed880098b7e26b22ca0d7cf230b5af1a94c98183a86f0535ebc155b5bd64d6973b4ff2401afe8622
SSDEEP

3072:rW3BhHlBXcwJWgDZ1cEEqB7m2/0fIWQVfSDAxlBBbPkX8:6jfcqDV1qqB7p0fiSMxyX8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4ba6975c893607474d066f79a6be796d_JaffaCakes118

Files

4ba6975c893607474d066f79a6be796d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5ea553870c4612a2ba5b0b1f66786957

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CopyRect
CopyIcon
InsertMenuA
LoadMenuA
GetWindowTextA
IsWindow
DialogBoxParamW
DialogBoxParamA
GetDC
BlockInput
DrawIcon
LoadCursorA
CreateIcon
AppendMenuA
IsMenu
EndDialog

advapi32

RegLoadKeyW
RegOpenKeyA
RegReplaceKeyA
RegQueryValueA
RegGetKeySecurity
RegOpenKeyExW
RegEnumKeyExA
RegEnumKeyW
RegCreateKeyExW
RegFlushKey
RegCreateKeyW
RegEnumKeyA
RegLoadKeyA
RegOpenKeyW
RegQueryInfoKeyA
RegEnumValueW
RegDeleteKeyA

kernel32

lstrcatA
lstrcpynA
lstrcmpiA
GetStringTypeA
FreeLibrary
HeapAlloc
WideCharToMultiByte
GetModuleHandleA
CloseHandle
HeapFree
GetLocalTime
GetLastError
SetLastError
GetFileAttributesA
GlobalAlloc
GetStringTypeW
DeleteFileA
GetCommandLineA
GetStdHandle
lstrlenA

comctl32

ImageList_Merge
ImageList_ReplaceIcon
ImageList_DrawEx
ImageList_GetImageRect
ImageList_DragMove
ImageList_GetImageInfo
ImageList_DragEnter
InitCommonControls
ImageList_DrawIndirect
ImageList_DragLeave
ImageList_Create
ImageList_Remove
ImageList_GetImageCount
ImageList_Copy
ImageList_AddIcon
ImageList_DragShowNolock
ImageList_Read
ImageList_LoadImageA
ImageList_Replace
ImageList_LoadImage

Sections

.EoFgDM
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.pnSxx
Size: 115KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ilvrj
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.WdHZPX
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ

.wadAGT
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5ea553870c4612a2ba5b0b1f66786957

Headers

File Characteristics

Imports

user32

advapi32

kernel32

comctl32

Sections

.EoFgDM Size: 15KB - Virtual size: 15KB

.pnSxx Size: 115KB - Virtual size: 115KB

.ilvrj Size: 512B - Virtual size: 4KB

.WdHZPX Size: - Virtual size: 3KB

.wadAGT Size: 2KB - Virtual size: 2KB

.EoFgDM
Size: 15KB - Virtual size: 15KB

.pnSxx
Size: 115KB - Virtual size: 115KB

.ilvrj
Size: 512B - Virtual size: 4KB

.WdHZPX
Size: - Virtual size: 3KB

.wadAGT
Size: 2KB - Virtual size: 2KB