4879268969844124c8f64694548950d4_JaffaCakes118

General

Target

4879268969844124c8f64694548950d4_JaffaCakes118
Size

94KB
MD5

4879268969844124c8f64694548950d4
SHA1

4271adb6f7e2364c05c75e9b9b881beee099f53d
SHA256

263358a5baab5f18f50649fccea41875050134f926cc172b7066ab8aeabb0dd8
SHA512

718fdd332a979e9881c72a48a40dab7168f971e987bb40f457a7d70f4a3b2b61001ab7fda9d58bbb3b6fad629286ff48a2c7efff0dc3befd9790ed8d7d71df09
SSDEEP

1536:RR6Hsdm6KMB/G7owl1Q+dm3LfXqDC8MuDcOafAEOidIefxluYqyIH7HTO:7dFKq/G7owXQ+dm+hMm1k7fyzTO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4879268969844124c8f64694548950d4_JaffaCakes118

Files

4879268969844124c8f64694548950d4_JaffaCakes118
.exe windows:5 windows x86 arch:x86

3096f9f30e93bc50af001721c61c949f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

sqrt
_exit
__setusermatherr
__p__commode
__set_app_type
_XcptFilter
_acmdln
_adjust_fdiv
exit
__p__fmode
_initterm
__getmainargs
_except_handler3

kernel32

VirtualProtect
GetModuleHandleA

user32

SetTimer
GetSystemMetrics
GetSubMenu
SetWindowLongA
WindowFromPoint
DestroyIcon
GetDCEx
CharLowerA
SetWindowTextA
ClientToScreen
GetClassNameA
DeleteMenu
GetWindowTextA
GetScrollInfo
LoadStringA
CreateWindowExA
DrawEdge
GetLastActivePopup
UnhookWindowsHookEx
MessageBeep
DrawFrameControl
RegisterWindowMessageA
GetMenuItemCount
CallNextHookEx
GetForegroundWindow
SetWindowsHookExA
DestroyCursor
GetKeyboardType
InvalidateRect
InsertMenuA
PtInRect
GetIconInfo
IsDialogMessageA
CloseClipboard
SetCursor
IsRectEmpty
SetMenu
GetParent
wsprintfA
DispatchMessageA
GetDlgItem
GetMessagePos
LoadBitmapA
SetForegroundWindow
LoadIconA
GetTopWindow
EnumThreadWindows
RemovePropA
AdjustWindowRectEx
IsWindow
InsertMenuItemA
GetWindowRect
EnumWindows
SystemParametersInfoA
EnableWindow
GetWindowThreadProcessId
GetMenuItemID
UpdateWindow
RedrawWindow
UnregisterClassA
MapWindowPoints
IsChild
GetSystemMenu
RegisterClassA
PostMessageA
WaitMessage
SetWindowPlacement
SetCapture
IsZoomed
SetScrollPos
KillTimer
GetWindowPlacement
IntersectRect
DestroyMenu
RemoveMenu
DrawIcon
EmptyClipboard
GetClientRect
ScreenToClient
WinHelpA
GetMenu
TrackPopupMenu
GetKeyState
FindWindowA
GetCursorPos
SetClipboardData
SetClassLongA
GetCapture
GetScrollPos
EqualRect
InflateRect
TranslateMessage
SetFocus
OemToCharA
GetSysColorBrush
ReleaseDC
DefWindowProcA

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 63KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3096f9f30e93bc50af001721c61c949f

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

Sections

.text Size: 11KB - Virtual size: 11KB

.data Size: 63KB - Virtual size: 63KB

.rsrc Size: 18KB - Virtual size: 18KB

.text
Size: 11KB - Virtual size: 11KB

.data
Size: 63KB - Virtual size: 63KB

.rsrc
Size: 18KB - Virtual size: 18KB