71b05eb0b8200ffc9c69d37b5ac36129_JaffaCakes118

General

Target

71b05eb0b8200ffc9c69d37b5ac36129_JaffaCakes118
Size

187KB
MD5

71b05eb0b8200ffc9c69d37b5ac36129
SHA1

cc62857348092ed9a009deaf98956e025b3b8c9b
SHA256

133f20c8b48f31d9d763197d6f5c9627496df6d9763816c2d67777875c2b2983
SHA512

b61585bf9e3748e74b234b560aff9aba91e615b57f42e4d93463ca9a87bf7d71ead59929fe377cd20924e0b4b9bce7af7db6921348e7beb68abe198a23ad4cba
SSDEEP

3072:oGTYifPlBlwVHDmmRIdJeOW03AOD/R1/pOPs5JFULnt+uV:lTYiHlXuKJhWiR1APs5JFULt+uV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
71b05eb0b8200ffc9c69d37b5ac36129_JaffaCakes118

Files

71b05eb0b8200ffc9c69d37b5ac36129_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e650f859c04fe9f405ea5c6ba0d30517

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

user32

IsZoomed
GetDC
CreatePopupMenu
GetWindowDC
GetWindow
GetSysColorBrush
IsCharLowerA
CharUpperA
GetFocus
GetSystemMenu
IsWindowEnabled
LoadCursorA
GetParent

kernel32

lstrlenA
ExitProcess
GetLastError
GetFullPathNameA
VirtualAllocEx
GetFileType

shlwapi

PathGetCharTypeA
PathIsDirectoryA
PathFileExistsA

Exports

Exports

_TyEhHUtztD
WGF7mL
w_UB0Yh9K2vX_O@12
_7PCZ7XKxJlzKBI@12
_1LFCDe7r@16
9NkvcFMYg7xMn

Sections

.text
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 162KB - Virtual size: 164KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

BSS
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.res
Size: 19KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e650f859c04fe9f405ea5c6ba0d30517

Headers

File Characteristics

Imports

user32

kernel32

shlwapi

Exports

Exports

Sections

.text Size: 8KB - Virtual size: 12KB

DATA Size: 162KB - Virtual size: 164KB

.tls Size: 512B - Virtual size: 108KB

.rdata Size: 512B - Virtual size: 4KB

BSS Size: 1024B - Virtual size: 4KB

.idata Size: 1024B - Virtual size: 4KB

.edata Size: 512B - Virtual size: 4KB

.res Size: 19KB - Virtual size: 20KB

.text
Size: 8KB - Virtual size: 12KB

DATA
Size: 162KB - Virtual size: 164KB

.tls
Size: 512B - Virtual size: 108KB

.rdata
Size: 512B - Virtual size: 4KB

BSS
Size: 1024B - Virtual size: 4KB

.idata
Size: 1024B - Virtual size: 4KB

.edata
Size: 512B - Virtual size: 4KB

.res
Size: 19KB - Virtual size: 20KB