729e774042dd1b09e3b132659bee3867_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

729e774042dd1b09e3b132659bee3867_JaffaCakes118
Size

196KB
MD5

729e774042dd1b09e3b132659bee3867
SHA1

dcbf369888b822f0ab21d97b1e3d95b71133026a
SHA256

5551ad339a4a36fedae361de6eedb2691d869a8fe58bf972e615082515802c1f
SHA512

b5d3d4568434236a4e75ff741e009220bbd0be4f718c8252b44b46962ebdd88c8168f8f858befc25b2c0588359b602836bb10ec5cd56c1b4c843e447a1e38094
SSDEEP

3072:FJh2vzT0s2rRsamQN6ahC1bBz7zU/WZAn53mkZ8f7QJ4w:eT0s/76C1bxsUAnLZe73w

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
729e774042dd1b09e3b132659bee3867_JaffaCakes118

Files

729e774042dd1b09e3b132659bee3867_JaffaCakes118
.dll windows:4 windows x86 arch:x86

0145cca0fa1213c655182aa954466c79

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

version

VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA

kernel32

lstrcatA
MulDiv
WinExec
lstrcpyA
GlobalAlloc
GetSystemInfo
GetPrivateProfileStringA
GetModuleFileNameA
FreeLibrary
LoadLibraryA
GetModuleHandleA
GetProcAddress
GlobalLock
GlobalHandle
GlobalUnlock
GlobalFree
GlobalMemoryStatus
GetVersionExA
GetFileAttributesA

user32

LoadStringA
GetParent
DialogBoxParamA
GetDlgItem
GetWindowLongA
IsWindow
ReleaseDC
GetDC
wsprintfA
ShowWindow
SendMessageA
GetClassLongA
GetSystemMetrics
MoveWindow
GetDlgCtrlID
GetSysColor
GetDlgItemTextA
EndDialog
SetDlgItemTextA
SetWindowTextA
SystemParametersInfoA
IsWindowVisible
GetWindowRect

gdi32

DeleteObject
SetTextColor
SetBkColor
GetDeviceCaps
GetStockObject
CreateFontA

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCloseKey

msvcrt

free
_adjust_fdiv
malloc
_initterm
strrchr

Exports

Exports

About
ExtAbout
GetProduct

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 536B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 168KB - Virtual size: 168KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

0145cca0fa1213c655182aa954466c79

Headers

File Characteristics

Imports

version

kernel32

user32

gdi32

advapi32

msvcrt

Exports

Exports

Sections

.text Size: 8KB - Virtual size: 4KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 536B

.rsrc Size: 4KB - Virtual size: 4KB

.reloc Size: 4KB - Virtual size: 576B

.text Size: 168KB - Virtual size: 168KB

.text
Size: 8KB - Virtual size: 4KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 536B

.rsrc
Size: 4KB - Virtual size: 4KB

.reloc
Size: 4KB - Virtual size: 576B

.text
Size: 168KB - Virtual size: 168KB