477167119f838a78ec9689d38ed43bf1_JaffaCakes118

General

Target

477167119f838a78ec9689d38ed43bf1_JaffaCakes118
Size

139KB
MD5

477167119f838a78ec9689d38ed43bf1
SHA1

37ab22f4a24fc01a95bb886b4569d986335dc012
SHA256

4d7feed0fad78a3417fd9b2dd12d7165a8353c7a451722248587c4eb013e9f83
SHA512

4c2d3ea3a199a1e81712633684ba596105756b4798148f75ae3c3238f0020809b4219010da31b96bf8794c82df0efa52a151bf5105af8a7e16c6ef0294ebc253
SSDEEP

3072:lkZvyOJzPxGq8SLsUfNCLk8p/ingM5jW5kL1uyb+nsZ6foWcAG5UP1:lk9yOx9OOwLk8xejW5Av+k6gWcPUP1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
477167119f838a78ec9689d38ed43bf1_JaffaCakes118

Files

477167119f838a78ec9689d38ed43bf1_JaffaCakes118
.exe windows:4 windows x86 arch:x86

cec375c903102fcb0de9cc37e1dc6a1f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CopyRect
DrawIconEx
GetMenu
AlignRects
AppendMenuW
CreateIcon
InsertMenuA
GetDC
DialogBoxParamW
AppendMenuA
CloseWindow
LoadMenuA
CalcMenuBar
EndDialog
DrawIcon
DrawTextW
DialogBoxParamW
GetWindowTextA
CreateIcon
GetCursor
DrawIcon
CopyIcon
GetDlgItem
CopyRect
LoadMenuA
AppendMenuA
BlockInput
DrawTextW
IsMenu
CopyImage
CalcMenuBar
GetWindowTextLengthA
InsertMenuA
CloseWindow
LoadCursorA

kernel32

HeapFree
GetStringTypeA
SetLastError
WideCharToMultiByte
GetModuleHandleA
GetLocalTime
lstrcmpiA
lstrcatA
GetFileType
GetStringTypeW
GetDateFormatA
GetCommandLineA
Sleep
GetLastError
CloseHandle
GetStdHandle
HeapAlloc
GetModuleFileNameA

advapi32

RegFlushKey
RegQueryValueExA
RegOpenKeyExA
RegQueryValueW
RegDeleteValueA
RegQueryInfoKeyW
RegOpenKeyExW
RegDeleteKeyA
RegCreateKeyExW
RegEnumValueW
RegEnumKeyExA
RegEnumKeyW
RegEnumValueA
RegLoadKeyW
RegQueryValueExW
RegDeleteKeyW

comctl32

ImageList_GetIcon
ImageList_DragShowNolock
ImageList_Copy
ImageList_LoadImageW
ImageList_GetImageCount
ImageList_Replace
ImageList_Read
ImageList_Destroy
ImageList_Draw
ImageList_Create
ImageList_Remove
ImageList_Merge
ImageList_DragEnter
ImageList_ReplaceIcon
ImageList_DragLeave
ImageList_DrawEx

Sections

.NuJl
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.xlte
Size: 116KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.VrWMi
Size: 2KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Lflmdh
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cec375c903102fcb0de9cc37e1dc6a1f

Headers

File Characteristics

Imports

user32

kernel32

advapi32

comctl32

Sections

.NuJl Size: 14KB - Virtual size: 14KB

.xlte Size: 116KB - Virtual size: 115KB

.VrWMi Size: 2KB - Virtual size: 57KB

.Lflmdh Size: 2KB - Virtual size: 2KB

.NuJl
Size: 14KB - Virtual size: 14KB

.xlte
Size: 116KB - Virtual size: 115KB

.VrWMi
Size: 2KB - Virtual size: 57KB

.Lflmdh
Size: 2KB - Virtual size: 2KB