61e0adf66a2705d8e9cb19117a9b87e7_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

61e0adf66a2705d8e9cb19117a9b87e7_JaffaCakes118
Size

39KB
MD5

61e0adf66a2705d8e9cb19117a9b87e7
SHA1

f69b58518d1178a1245c10be47c8d4766c5f01c8
SHA256

681bb7bb769b657b5279c8253fc06a0de6d978072b43cacb3c5b101cfdb9ac6e
SHA512

11c4fcb4a41b7a834e49af0949281d25af07786cf39d25a2fbf9628c057b39c766b2262e3a2b6abb0b80da5e77fe8603c86621dd233831cf88888d0ef6785c4c
SSDEEP

768:39xRP+YiiVjIO0QdzI8R+XMEfwd+5tseMkGFLJ:39bWYPVjIO0QdzIfrtseUFL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
61e0adf66a2705d8e9cb19117a9b87e7_JaffaCakes118

Files

61e0adf66a2705d8e9cb19117a9b87e7_JaffaCakes118
.exe windows:2 windows x86 arch:x86

b773ba6fc464c112238befaa0823c333

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameA
FileTimeToDosDateTime
GetCurrentThread
GetModuleHandleA
InitializeCriticalSection
CreateEventA
OpenEventW
Sleep
GetVersionExA
GetShortPathNameA
GetTickCount
DuplicateHandle
RemoveDirectoryW
LoadLibraryW
VirtualAlloc

user32

LoadIconW
GetForegroundWindow
InsertMenuItemA
ClientToScreen
IsWindowEnabled
GetWindowTextW
FillRect
GetWindowRect
MessageBoxIndirectW
InvalidateRgn
ShowWindow
CharNextW
SetWindowTextA
SetCapture
InsertMenuItemW
GetActiveWindow
MonitorFromPoint

gdi32

GetTextColor
StretchDIBits
CreateFontIndirectA

advapi32

RegOpenKeyW

comdlg32

PageSetupDlgA
PrintDlgW
GetSaveFileNameW
ChooseFontA
GetSaveFileNameA
GetOpenFileNameA

shell32

StrChrW

ole32

CoGetClassObject
CoGetObject
CoDosDateTimeToFileTime

version

GetFileVersionInfoA

ws2_32

WSAEnumProtocolsW
getpeername
getprotobyname
WSAStartup
closesocket

Sections

.text
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 410B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b773ba6fc464c112238befaa0823c333

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

comdlg32

shell32

ole32

version

ws2_32

Sections

.text Size: 15KB - Virtual size: 14KB

.data Size: 15KB - Virtual size: 14KB

.idata Size: 2KB - Virtual size: 1KB

.rsrc Size: 5KB - Virtual size: 5KB

.reloc Size: 512B - Virtual size: 410B

.text
Size: 15KB - Virtual size: 14KB

.data
Size: 15KB - Virtual size: 14KB

.idata
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 5KB - Virtual size: 5KB

.reloc
Size: 512B - Virtual size: 410B