71ec348c217e476f5389f8e302e7f977_JaffaCakes118

General

Target

71ec348c217e476f5389f8e302e7f977_JaffaCakes118
Size

22KB
MD5

71ec348c217e476f5389f8e302e7f977
SHA1

288d4a7af87e83304b447ed0831fabd7f82698a3
SHA256

5c4622dc644d4edd8b066398aef4d0d45f1013fe60099dce61c48d259ead294d
SHA512

4401bcaa6f7886b2dc6d7dd77e8f672b185620b95accdd705fed5f9c9494584fe0c2d65a7259f842b3be60ebc81a6bbeb3fabf881bb99d547c1bf7f68e87dbe7
SSDEEP

384:2bxFNDz9T+unZ4otindn6idEFmr4ylck9lJ/a5dzWJrd1kU:2/NDpxZvtid6KXr1lc0lU5dzI1kU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
71ec348c217e476f5389f8e302e7f977_JaffaCakes118

Files

71ec348c217e476f5389f8e302e7f977_JaffaCakes118
.exe windows:4 windows x86 arch:x86

80e1eb13913fefef2aba8e62bafd1f38

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpynW
GetStringTypeA
SetFilePointer
GetCommandLineA
GetCurrentProcess
GetFileType
GetStdHandle
GetVersion
LCMapStringA
lstrcpyA
CreateFileA
GetStringTypeW
LCMapStringW
lstrcpynA
MultiByteToWideChar
SetHandleCount
TerminateProcess
GetStartupInfoA
WriteFile
GetModuleFileNameA
GetACP
lstrcatA

user32

DialogBoxParamW
GetCursor
GetWindowTextA
LoadCursorA
GetMenu
EndDialog
DrawTextA
InsertMenuA
CopyRect
GetFocus
CreateIcon
LoadMenuA
DialogBoxParamA
CopyImage
DrawTextW
CopyIcon
DrawIconEx
GetDC
GetWindowTextLengthA
IsMenu
DrawIcon
CloseWindow
GetDlgItem
IsWindow

comctl32

ImageList_Copy
CreateStatusWindow
CreateUpDownControl
CreateMappedBitmap
DllGetVersion
CreateToolbar
ImageList_DrawEx
InitCommonControls
ImageList_LoadImageW
ImageList_AddIcon
ImageList_LoadImageA
ImageList_DragEnter
CreateToolbarEx

advapi32

RegCreateKeyW
RegQueryValueExA
RegOpenKeyExA
RegEnumValueW
RegDeleteValueA
RegOpenKeyA
RegEnumKeyW
RegDeleteValueW
RegEnumKeyExW
RegQueryValueA

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 16.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

80e1eb13913fefef2aba8e62bafd1f38

Headers

File Characteristics

Imports

kernel32

user32

comctl32

advapi32

Sections

.text Size: 2KB - Virtual size: 2KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 16KB - Virtual size: 16.3MB

.text
Size: 2KB - Virtual size: 2KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 16KB - Virtual size: 16.3MB