70711c388ebb26b72dc48310425ff619_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

70711c388ebb26b72dc48310425ff619_JaffaCakes118
Size

6.2MB
MD5

70711c388ebb26b72dc48310425ff619
SHA1

96d75c9269b254309c2205c888df958dda38b5e1
SHA256

c09407622add005c12c3ecebda69a6273dbc39dca5aa5169a77ade41d2813bf0
SHA512

d98d416db2ac9e92f8f8c5b03fcf9731ee4aebf15a812d2334adf79a7435da6833af4351d84cb720ca4c3b2a9878ef375e36b66ccddef6c435c3a6093fa521ad
SSDEEP

98304:eenIf0Z5ICG7TfTdHPyZe8ccv3SRQadU3cTLi4uSITVcyoz:eom7TkZetcv3SYcTLiwITV1o

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
70711c388ebb26b72dc48310425ff619_JaffaCakes118

Files

70711c388ebb26b72dc48310425ff619_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8c2bf3ea16663b3d6e60a1c6f097bd5f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mfc42

ord4275

msvcrt

free

kernel32

GetModuleHandleA
LoadLibraryA
VirtualProtect
GetModuleFileNameA
ExitProcess

user32

GetSubMenu
MessageBoxA

gdi32

SetTextColor

advapi32

RegSetValueExA

shell32

SHChangeNotify

comctl32

ImageList_SetBkColor

ole32

GetHGlobalFromStream

olepro32

ord252

oleaut32

GetErrorInfo

msvcp60

?end@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEPADXZ

shlwapi

SHDeleteKeyA

version

GetFileVersionInfoA

ws2_32

ntohs

wininet

InternetSetOptionA

psapi

EnumProcessModules

winmm

PlaySoundA

Sections

.text
Size: 552KB - Virtual size: 549KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 460KB - Virtual size: 456KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3.8MB - Virtual size: 3.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.jdy0
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.jdy1
Size: 152KB - Virtual size: 148KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8c2bf3ea16663b3d6e60a1c6f097bd5f

Headers

File Characteristics

Imports

mfc42

msvcrt

kernel32

user32

gdi32

advapi32

shell32

comctl32

ole32

olepro32

oleaut32

msvcp60

shlwapi

version

ws2_32

wininet

psapi

winmm

Sections

.text Size: 552KB - Virtual size: 549KB

.rdata Size: 460KB - Virtual size: 456KB

.data Size: 20KB - Virtual size: 29KB

.rsrc Size: 3.8MB - Virtual size: 3.8MB

.jdy0 Size: 1.2MB - Virtual size: 1.2MB

.jdy1 Size: 152KB - Virtual size: 148KB

.reloc Size: 12KB - Virtual size: 9KB

.text
Size: 552KB - Virtual size: 549KB

.rdata
Size: 460KB - Virtual size: 456KB

.data
Size: 20KB - Virtual size: 29KB

.rsrc
Size: 3.8MB - Virtual size: 3.8MB

.jdy0
Size: 1.2MB - Virtual size: 1.2MB

.jdy1
Size: 152KB - Virtual size: 148KB

.reloc
Size: 12KB - Virtual size: 9KB