6ae556ad7e74dcf6bad8fa213111d4a0_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

6ae556ad7e74dcf6bad8fa213111d4a0_JaffaCakes118
Size

64KB
MD5

6ae556ad7e74dcf6bad8fa213111d4a0
SHA1

645abbf7510e20a955a7cf8e9608f2c70ac1d506
SHA256

4a558446cb5d0be64ae76dbf4bf80b4d4c2627923f2401d71e42356e94f24659
SHA512

22d4d0b27bf7d6bb863c8cacdd521311d82c5395ebf409ec763d62ee34a5781dd2009d59744f7bcc282f7e87b6d85d4f703097b57c4216ef8382818c23a4b827
SSDEEP

1536:IkHGcCYNndj7v08acy2UyPqTuifzPism8Ls5RY7sqBCdLS:IWvdjA83zUTFistj7sOC9S

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6ae556ad7e74dcf6bad8fa213111d4a0_JaffaCakes118

Files

6ae556ad7e74dcf6bad8fa213111d4a0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

35f9b6cbc9cd38aa8e830e65d81f6df1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetThreadLocale
ExitProcess
SizeofResource
VirtualAlloc
GlobalAlloc
VirtualAllocEx
LoadLibraryA
SetLastError
VirtualFree

gdi32

GetClipBox
GetDIBColorTable
CreateDIBitmap
CreateCompatibleBitmap
CreateFontIndirectA
CreateBrushIndirect

ole32

CoCreateGuid
CoFreeUnusedLibraries
StgCreateDocfileOnILockBytes
StgOpenStorage

user32

IsDialogMessageW
WaitMessage
IsWindow
DrawIconEx
SetActiveWindow
RegisterClipboardFormatA
DrawTextA
IntersectRect
DispatchMessageW
InvalidateRect
GetForegroundWindow
CharNextW
GetFocus
CharUpperA
ReleaseDC
GetMenuState
GetLastActivePopup
InsertMenuA
SetMenu
SetScrollPos
GetMenuItemInfoA
CharLowerA
LoadIconA
GetCursorPos
IsWindowEnabled
PtInRect
TrackPopupMenu
GetClipboardData
EmptyClipboard
DispatchMessageA
OpenClipboard
DrawIcon
InflateRect
SetTimer
GetSubMenu
GetWindowLongW
GetSystemMenu
RemovePropA
DrawFrameControl
SetFocus
GetMessagePos
ShowOwnedPopups
TranslateMessage
SendMessageA
ScrollWindow
SetScrollRange
GetWindowTextLengthA
GetMenuItemCount
DestroyIcon
GetMenu
DrawAnimatedRects
PostQuitMessage
SetPropA
GetCursor
EnumChildWindows
DestroyCursor
GetWindowLongA
OemToCharA
CreatePopupMenu
GetKeyboardLayoutList
CloseClipboard
ActivateKeyboardLayout
GetSystemMetrics
IsZoomed
InsertMenuItemA
GetTopWindow
LoadBitmapA
PostMessageA
GetDesktopWindow
OpenIcon
GetSysColor

Exports

Exports

ksYaN1SYotKJy@8

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 47KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

35f9b6cbc9cd38aa8e830e65d81f6df1

Headers

File Characteristics

Imports

kernel32

gdi32

ole32

user32

Exports

Exports

Sections

.text Size: 10KB - Virtual size: 10KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 47KB - Virtual size: 103KB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 10KB - Virtual size: 10KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 47KB - Virtual size: 103KB

.rsrc
Size: 2KB - Virtual size: 1KB