62acce855cb47006a2568a0aa2715179_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

62acce855cb47006a2568a0aa2715179_JaffaCakes118
Size

129KB
MD5

62acce855cb47006a2568a0aa2715179
SHA1

df793604663cf66bea0996fb53562791248441c4
SHA256

3906a45be9774852ab1f5e0937ebbb2979ff67c35bf0eef5d3d2f3d02d40d057
SHA512

2523945d196024df1ec8fd172047ba47882a5203a361ce08b8821033be2c83150e73f267938b681818cce4cefb6fea9bb6c7ed228ce1a59292c0ac1849cfc55b
SSDEEP

3072:jzLLkxjU7yba5mLkvufhPT5iNIwJ8I6XpqRSj:LLkxjja4Lkvuf9TkNIwJ8I4qE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
62acce855cb47006a2568a0aa2715179_JaffaCakes118

Files

62acce855cb47006a2568a0aa2715179_JaffaCakes118
.exe windows:4 windows x86 arch:x86

93ea1e10d5022f2d48b099da2677ed4e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineW
ExitProcess
GlobalAddAtomA
VirtualAllocEx
GetModuleHandleA
GlobalAlloc
GetVersion
GlobalFindAtomA

comctl32

ImageList_Create
ImageList_DrawEx
ImageList_Remove
ImageList_Draw
ImageList_Add
ImageList_DragShowNolock
ImageList_Destroy
ImageList_Read

version

VerFindFileA
VerQueryValueA
GetFileVersionInfoSizeA

shell32

Shell_NotifyIconW

gdi32

GetTextAlign
SetTextColor

user32

WindowFromPoint
AdjustWindowRectEx
GetSystemMenu
ShowOwnedPopups
OffsetRect
MapWindowPoints
RegisterClassA
GetClassNameA
SetWindowLongA
CallWindowProcA
GetSystemMetrics
FillRect
CreatePopupMenu
EnumWindows
SetCursor
UnregisterClassA
LoadBitmapA
GetSysColorBrush
InsertMenuA
EqualRect
SetScrollPos
SetWindowPos
SendMessageA
DestroyMenu
GetKeyNameTextA
IsDialogMessageA
LoadCursorA
GetClipboardData
SetCapture
GetKeyboardLayoutNameA
ScreenToClient
GetWindowLongA
IsWindow
GetCursorPos
OpenIcon
GetForegroundWindow
IsIconic
SetFocus
SetPropA
GetWindow
CloseClipboard
SystemParametersInfoA
TranslateMessage
SetWindowsHookExA
SendMessageW
GetWindowDC
IsCharUpperA
GetKeyState
WaitMessage
GetWindowPlacement
PostQuitMessage
GetMenu
GetActiveWindow
GetKeyboardLayoutList
ScrollWindow
PtInRect
DispatchMessageW
GetSysColor
SetClassLongA
wsprintfA
SetClipboardData
SetActiveWindow
MapVirtualKeyA
FrameRect
DestroyIcon
GetWindowTextLengthA
EnableMenuItem
CreateIcon
OemToCharA
RedrawWindow
IsChild
EnumThreadWindows
CharNextW
ClientToScreen

advapi32

RegQueryInfoKeyA

Exports

Exports

n6DJue
_BICnL1uvpxEtN
DVYx0ZQXHlM7J@16
_dCH0RyC7
dQmL4@8
XjwMCAhdM
OERXLwurNk18hI
_Ob78p
_CrvIi
_Gyv_UFav@24
WuLaMfAtu0SgC7@8
_Mo2PA5o4j
_0gzm4uZDh5fmqJ
P30HA28Vwajd@20
eAL1eAoifISr2J
NEqLVJGK@4
F0pQe8LL4l
WOFCUd2u9
_zwVy2S_B

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 108KB - Virtual size: 235KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

93ea1e10d5022f2d48b099da2677ed4e

Headers

File Characteristics

Imports

kernel32

comctl32

version

shell32

gdi32

user32

advapi32

Exports

Exports

Sections

.text Size: 14KB - Virtual size: 13KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 108KB - Virtual size: 235KB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 14KB - Virtual size: 13KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 108KB - Virtual size: 235KB

.rsrc
Size: 2KB - Virtual size: 1KB