4aed3960398fc3794f1fc6fdea3cd151_JaffaCakes118

General

Target

4aed3960398fc3794f1fc6fdea3cd151_JaffaCakes118
Size

58KB
MD5

4aed3960398fc3794f1fc6fdea3cd151
SHA1

90e22c46323ba002e0bb003b83bdf90add979221
SHA256

c179af0634f32914bed1dd8a02f0bf7cd9c2eb193343317c66e27878807cffd5
SHA512

30a6ccacda4142525d645a66779420fc53a692ea8982afae024fdec450a48b48d3f2ad1ca81436182f108307d04cd2ec214d79e579100445234007327baac530
SSDEEP

768:hKLLAWbqdY+KzxY1LAhPWAW9LfvxpTZlIInmgli30ZMlIUstYUthTRfpwCDNqN/k:ALztUUbW9LBpfndlKyUyYouSItk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4aed3960398fc3794f1fc6fdea3cd151_JaffaCakes118

Files

4aed3960398fc3794f1fc6fdea3cd151_JaffaCakes118
.exe windows:4 windows x86 arch:x86

cb0ba7c293845a75a6f1f793194fa405

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DrawTextW
LoadMenuA
DialogBoxParamW
IsMenu
DrawTextA
CreateIcon
GetWindowTextLengthA
CloseWindow
CopyIcon
EndDialog
LoadCursorA
IsWindow
CopyImage
DrawIcon
CopyRect
DialogBoxParamA
GetDC
GetWindowTextA
InsertMenuA
GetDlgItem
GetCursor
DrawIconEx
GetMenu
GetFocus

kernel32

GetOEMCP
lstrcpynA
lstrcpynW
SetHandleCount
LCMapStringA
LCMapStringW
GetStartupInfoA
SetFilePointer
GetCommandLineA
TerminateProcess
GetVersion
GetStringTypeA
GetStdHandle
GetStringTypeW
lstrcpyA
CreateFileA
MultiByteToWideChar
GetCurrentProcess
GetCPInfo
GetFileType
GetModuleFileNameA
GetACP

comctl32

ImageList_DragEnter
ImageList_Create
DrawStatusTextW
ImageList_Add
InitCommonControls
DllGetVersion
CreateStatusWindow
CreateMappedBitmap
ImageList_LoadImageA
CreateToolbar
ImageList_LoadImageW
ImageList_Copy

advapi32

RegOpenKeyExA
RegOpenKeyA
RegCreateKeyW
RegDeleteKeyA
RegOpenKeyW
RegEnumKeyExA
RegQueryValueExA
RegCreateKeyExW
RegEnumValueW
RegQueryValueW
RegDeleteValueW

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 51KB - Virtual size: 16.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cb0ba7c293845a75a6f1f793194fa405

Headers

File Characteristics

Imports

user32

kernel32

comctl32

advapi32

Sections

.text Size: 3KB - Virtual size: 2KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 51KB - Virtual size: 16.4MB

.rsrc Size: 1KB - Virtual size: 4KB

.text
Size: 3KB - Virtual size: 2KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 51KB - Virtual size: 16.4MB

.rsrc
Size: 1KB - Virtual size: 4KB