76d2e20d6b6cdb663893cf4239428d84_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

76d2e20d6b6cdb663893cf4239428d84_JaffaCakes118
Size

116KB
MD5

76d2e20d6b6cdb663893cf4239428d84
SHA1

cd5fa2a46e57ade3795bf49efa4f8de58db9624c
SHA256

8946946bb840c6b45f82abad2a6ad6e845bdb4954ce7aaf8ddbaeac9e8614dac
SHA512

1a33bf5f9f3b5be7a0bde81885d4f5a5a1cb2e0936c448d7f216575163cecf3daed8a13b10459a5f87f12069a24f729d7bae7b4bf3232d5d5ee12f7863b3fd0b
SSDEEP

3072:UhZ11lQTpC6rTCFUMkUSCdOlrE7Fb2mUNC:2ZpQTIC6dJ7d2i

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
76d2e20d6b6cdb663893cf4239428d84_JaffaCakes118

Files

76d2e20d6b6cdb663893cf4239428d84_JaffaCakes118
.exe windows:4 windows x86 arch:x86

acbd455787624f0dc3b843383c17235b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MoveWindow
GetWindowThreadProcessId
GetIconInfo
DrawEdge
EnableWindow
IsZoomed
CreateIcon
OpenClipboard
CharNextA
GetSystemMenu
SetScrollPos
IsDialogMessageA
RemovePropA
GetKeyState
GetKeyNameTextA
RegisterClipboardFormatA
CreateMenu
RemoveMenu
MsgWaitForMultipleObjects
SetMenu
GetScrollInfo
FillRect
WaitMessage
ChildWindowFromPoint
TrackPopupMenu
BeginPaint
GetMenuItemCount
GetSubMenu
CharUpperBuffA
DrawAnimatedRects
GetWindowTextA
ShowWindow
GetScrollPos
GetClipboardData
GetSysColorBrush
GetClassInfoA
GetDlgItem
CloseClipboard
GetTopWindow
DrawIcon
GetMenuItemInfoA
GetClassLongA
DrawIconEx
GetMenu
InvalidateRect
SendMessageW
EndPaint
MessageBoxA
FindWindowA
RegisterClassA
ReleaseCapture
GetCursor
GetWindowLongA
DefWindowProcA
GetScrollRange
GetDesktopWindow
RegisterWindowMessageA
GetLastActivePopup
SystemParametersInfoA
EnumThreadWindows
SetScrollInfo
GetMenuStringA
SetClipboardData
EmptyClipboard
GetFocus
DrawMenuBar
GetParent
GetCapture
GetMenuState
SetCapture
UnhookWindowsHookEx
AdjustWindowRectEx
IsWindowUnicode
SetScrollRange
EnableScrollBar
IsRectEmpty
WindowFromPoint
PeekMessageW
UpdateWindow
ClientToScreen
GetWindowLongW
IsWindowVisible
OemToCharA
GetDCEx
LoadIconA
DestroyCursor
ReleaseDC
SetCursor
CallNextHookEx
SetRect
GetWindowPlacement
GetDC
SetWindowLongW
GetKeyboardLayoutList
FrameRect
EnableMenuItem

shell32

SHGetFileInfoA
Shell_NotifyIconA
SHGetFolderPathA
SHFileOperationA

comctl32

ImageList_DrawEx
ImageList_Write

version

VerInstallFileA
VerQueryValueA
VerFindFileA

kernel32

DeleteFileA
CompareStringA
VirtualAlloc
GetModuleHandleA
GetOEMCP
HeapAlloc
GetStringTypeW
ExitProcess
GetLocaleInfoA
GetStringTypeA
GetProcAddress
VirtualAllocEx
GetVersionExA
HeapFree
LocalAlloc
GetModuleFileNameA
ReadFile
ExitThread

comdlg32

ChooseColorA
GetOpenFileNameA
GetFileTitleA
GetSaveFileNameA

gdi32

SelectObject
GetPixel

Sections

CODE
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 75KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

DATA
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

BSS
Size: 512B - Virtual size: 246B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

acbd455787624f0dc3b843383c17235b

Headers

File Characteristics

Imports

user32

shell32

comctl32

version

kernel32

comdlg32

gdi32

Sections

CODE Size: 35KB - Virtual size: 35KB

.rdata Size: 75KB - Virtual size: 75KB

DATA Size: 3KB - Virtual size: 2KB

BSS Size: 512B - Virtual size: 246B

CODE
Size: 35KB - Virtual size: 35KB

.rdata
Size: 75KB - Virtual size: 75KB

DATA
Size: 3KB - Virtual size: 2KB

BSS
Size: 512B - Virtual size: 246B