48b1562d7e5c6d3422e47ebd80d77fa0_JaffaCakes118

General

Target

48b1562d7e5c6d3422e47ebd80d77fa0_JaffaCakes118
Size

33KB
MD5

48b1562d7e5c6d3422e47ebd80d77fa0
SHA1

81accf9bbcd337d07ff96b4c7ff052a3a12aaa1c
SHA256

6cbb44a882c8ef6565be859fcef8fe3d4a18ccfb0a4949f52b5a416bcf6b6fd8
SHA512

0b83d282e3b7ba124e660e5f52f8bc66bf6ef9a68e0033d295a6683e93d0e97210a6ecf10cfa007587020e99e5801dbeebba4e731cf79f19bdfd0de8e903432a
SSDEEP

384:AAboRTzUV/Phhm/lOFUtAOFsN1ChqOFw4GBhSBJEbw:AAGTzUVPhs0FUFFsNeFVGPSBq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
48b1562d7e5c6d3422e47ebd80d77fa0_JaffaCakes118

Files

48b1562d7e5c6d3422e47ebd80d77fa0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

efb91844dadf329591b1a2e18f510f8c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetPrivateProfileIntA
CloseHandle
SetFilePointer
ReadFile
LoadLibraryExA
FreeLibrary
GetPrivateProfileStringA
lstrcatA
GetModuleFileNameA
GetModuleHandleA
ExitProcess
lstrcmpA
lstrcmpiA
lstrlenA
CreateFileA
GetTickCount
lstrcpyA

user32

CreatePopupMenu
SendMessageA
SetForegroundWindow
GetCursorPos
GetWindowTextA
FindWindowA
DispatchMessageA
GetMessageA
MessageBoxA
CreateWindowExA
InsertMenuItemA
RegisterWindowMessageA
LoadImageA
DestroyIcon
DefWindowProcA
DestroyWindow
PostQuitMessage
SetTimer
wsprintfA
RegisterClassA
DestroyMenu
TrackPopupMenu

advapi32

RegQueryValueExA
RegOpenKeyA
RegCloseKey
RegCreateKeyA
RegDeleteValueA
RegSetValueExA

shell32

Shell_NotifyIconA
ShellExecuteA

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 57KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

efb91844dadf329591b1a2e18f510f8c

Headers

File Characteristics

Imports

kernel32

user32

advapi32

shell32

Sections

.text Size: 4KB - Virtual size: 3KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 1024B - Virtual size: 12KB

.rsrc Size: 25KB - Virtual size: 57KB

.text
Size: 4KB - Virtual size: 3KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 1024B - Virtual size: 12KB

.rsrc
Size: 25KB - Virtual size: 57KB