74fad1b8b8143e642d69739b2aad20ec_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

74fad1b8b8143e642d69739b2aad20ec_JaffaCakes118
Size

45KB
MD5

74fad1b8b8143e642d69739b2aad20ec
SHA1

c353c8d483ddbd33cb854a8143b8b246359c1a85
SHA256

55b16e38c814b20759961a4940a42c600d582a182d2b08d949d57364912dab86
SHA512

c7e7071a0a2da650faa867882b2fe3efa9472d373b935702bc876010e51b20a1accc9a77ebc15bb03a51e34e81e697588757ffc9c716de4c04b7c586b6e7cbf4
SSDEEP

768:VHoKaeVu1uQ2/l9qZcQycaMrmblTRhzNfCpzL6Uk/TUoMOJmzNFD4:VIi9Q2d9qZcEaMrcmSQDOED4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
74fad1b8b8143e642d69739b2aad20ec_JaffaCakes118

Files

74fad1b8b8143e642d69739b2aad20ec_JaffaCakes118
.exe windows:4 windows x86 arch:x86

37b6691b1e0aebdda10420996dca5d97

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrencyFormatA
OpenEventW
GetFileAttributesA
SystemTimeToTzSpecificLocalTime
OpenMutexW
GetPrivateProfileSectionNamesA
GetLastError
GenerateConsoleCtrlEvent
LockResource
GetConsoleCP
Process32First
WritePrivateProfileStructW
DosPathToSessionPathW
VirtualProtect
GetModuleFileNameA
GetCommTimeouts
BackupWrite

user32

DestroyMenu
RegisterClipboardFormatA
Win32PoolAllocationStats
UpdateLayeredWindow
EndDeferWindowPos
DdeDisconnect
BeginPaint
SetMenuItemBitmaps
RegisterClassExW
ModifyMenuA
LoadLocalFonts
FindWindowExA
ArrangeIconicWindows
UnregisterDeviceNotification
GetAltTabInfoW
CreateMDIWindowA
ActivateKeyboardLayout
UnhookWindowsHookEx
RegisterTasklist
CharToOemW
ChangeDisplaySettingsA
RemovePropW
GetScrollBarInfo
DdeImpersonateClient
WindowFromPoint
DrawTextExW
CharUpperBuffA
ShowCaret
LockWorkStation
SetUserObjectInformationA
SetDlgItemInt
GetMenuState
GetDlgItemTextW
CheckMenuItem
SendNotifyMessageA
DialogBoxParamA
InvalidateRect
DrawFrame
GetMenu

gdi32

CLIPOBJ_cEnumStart
GetROP2
DeleteMetaFile
GdiInitializeLanguagePack
GdiPlayJournal
GetFontAssocStatus
GdiAlphaBlend
PlayEnhMetaFile
GetEnhMetaFileDescriptionA
PATHOBJ_bEnum
DeviceCapabilitiesExA
GetClipBox
GetStringBitmapW
SetTextColor
ExtSelectClipRgn
SetColorSpace
PATHOBJ_vEnumStartClipLines
SetViewportOrgEx

comdlg32

PrintDlgExW
WantArrows
ChooseFontA
dwLBSubclass
dwOKSubclass
GetFileTitleA
FindTextW
Ssync_ANSI_UNICODE_Struct_For_WOW
LoadAlterBitmap
GetFileTitleW
GetOpenFileNameW
FindTextA
PageSetupDlgA
ChooseColorW
PrintDlgExA
PrintDlgW
GetSaveFileNameA
ReplaceTextA
CommDlgExtendedError
GetOpenFileNameA

Sections

.text
Size: 4KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 37KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

37b6691b1e0aebdda10420996dca5d97

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

Sections

.text Size: 4KB - Virtual size: 40KB

.data Size: 37KB - Virtual size: 40KB

.idata Size: 3KB - Virtual size: 4KB

.text
Size: 4KB - Virtual size: 40KB

.data
Size: 37KB - Virtual size: 40KB

.idata
Size: 3KB - Virtual size: 4KB