4ab84005e4b2d81a75c933afbaacf146_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

4ab84005e4b2d81a75c933afbaacf146_JaffaCakes118
Size

202KB
MD5

4ab84005e4b2d81a75c933afbaacf146
SHA1

c47972fe21c417911d5ea0e69af46c248d78e044
SHA256

0cb4fbe350f3b66d12f4798024330629b0e1bb287743627e4dfaa35cd18491cf
SHA512

2435c2e4d871991d7eb369d19aba1b8320221d3c93d13319e9d4d1e166259d081c9cd3b3d927223126f3573932f2e79453f038446fe984800bf9034a7001ca97
SSDEEP

3072:Qb7BxTwkgALMR7R7psCe/gQ9IlDpiUpxCzI+dWAXQQSOj9tQh9kUKh0:QbTlMR7R7psN9g8U/CkuAQljE8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4ab84005e4b2d81a75c933afbaacf146_JaffaCakes118

Files

4ab84005e4b2d81a75c933afbaacf146_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7c25e27f43d3f764d71039dfb30a0828

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

TranslateMessage
UpdateWindow
ShowWindow
CreateWindowExA
LoadCursorA
GetMessageA
RegisterClassExA
CheckMenuItem
LoadIconA
DefWindowProcA
ScreenToClient
SetWindowPos
DestroyMenu
GetDC
ReleaseDC
DestroyWindow
KillTimer
PostQuitMessage
GetSubMenu
LoadBitmapA
LoadMenuA
BeginPaint
SetWindowRgn
SetTimer
GetCapture
EndPaint
SetCapture
MoveWindow
ReleaseCapture
ClientToScreen
PostMessageA
TrackPopupMenu
GetCursorPos
DispatchMessageA

gdi32

DeleteObject
CreateEllipticRgn
CreateCompatibleDC
BitBlt
GetStockObject
CreateCompatibleBitmap
SelectObject
DeleteDC

imm32

ImmGetDefaultIMEWnd

winmm

PlaySoundA

kernel32

LCMapStringA
LCMapStringW
GetStringTypeA
LoadLibraryA
GetStringTypeW
HeapAlloc
HeapFree
VirtualAlloc
RtlUnwind
VirtualFree
WriteFile
HeapDestroy
GetFileType
HeapCreate
SetHandleCount
GetOEMCP
GetStdHandle
GetCPInfo
WideCharToMultiByte
GetACP
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
MultiByteToWideChar
GetCurrentProcess
TerminateProcess
UnhandledExceptionFilter
GetProcAddress
GetVersion
GetStartupInfoA
GetModuleHandleA
ExitProcess
GetCommandLineA

Sections

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 939B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 167KB - Virtual size: 167KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7c25e27f43d3f764d71039dfb30a0828

Headers

File Characteristics

Imports

user32

gdi32

imm32

winmm

kernel32

Sections

.text Size: 20KB - Virtual size: 20KB

.rdata Size: 1024B - Virtual size: 939B

.data Size: 10KB - Virtual size: 11KB

.idata Size: 2KB - Virtual size: 2KB

.rsrc Size: 167KB - Virtual size: 167KB

.text
Size: 20KB - Virtual size: 20KB

.rdata
Size: 1024B - Virtual size: 939B

.data
Size: 10KB - Virtual size: 11KB

.idata
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 167KB - Virtual size: 167KB