78b73a685af8cd62a8916054750fcb64_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

78b73a685af8cd62a8916054750fcb64_JaffaCakes118
Size

178KB
MD5

78b73a685af8cd62a8916054750fcb64
SHA1

187e40f660f56c38bdaeaa28bd238965ff836217
SHA256

d4ac07bb2e0c6e177a8bd2498facd9fe992bb1f89d888fdfe206688e76609313
SHA512

449c573b0cc651b4d76fe5c94341ad897c27d55039166c421ec20a8b63ff72e5290923027856449425fbc645c853dbef02f957af34e17cfe992142374f1c9244
SSDEEP

3072:ks7wUUBRASFZtBxHLa57fZqcxhbA6cGiBqu1RgAr7ak:PMUYgTRnBiBquHgAr77

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
78b73a685af8cd62a8916054750fcb64_JaffaCakes118

Files

78b73a685af8cd62a8916054750fcb64_JaffaCakes118
.exe windows:4 windows x86 arch:x86

954b973b9ed785bf9e5b9d642958ecb5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

user32

MoveWindow
GetSystemMetrics
DrawTextA
GetParent
PeekMessageA
SendMessageA
InsertMenuItemA
GetDesktopWindow
WaitMessage
GetMenuStringA
FrameRect
SetActiveWindow
CallNextHookEx
GetSysColor
MsgWaitForMultipleObjects
GetDlgItem
CharUpperA
SetScrollInfo
GetScrollPos
ActivateKeyboardLayout
ChildWindowFromPoint
IsDialogMessageA
DefWindowProcA
IsWindowVisible
RedrawWindow
GetClassNameA
DrawFrameControl
IsWindowUnicode
DestroyIcon
GetKeyboardLayoutList
GetWindowPlacement
SetMenu
GetForegroundWindow
PtInRect
DrawIconEx
SetCapture
CharNextA
ScreenToClient
EmptyClipboard
InflateRect
IsZoomed
GetKeyboardLayoutNameA
GetClipboardData
GetSysColorBrush
RemoveMenu
ReleaseCapture
PostMessageA
MessageBoxA
OpenClipboard
IsIconic
GetKeyNameTextA
IsCharLowerA
CharNextW
IsWindowEnabled
BeginPaint
EnumWindows
GetWindowLongW
DrawAnimatedRects
CreateMenu
wsprintfA
OemToCharA
GetKeyboardType
GetLastActivePopup
MapVirtualKeyA
GetCapture
CreatePopupMenu
GetDCEx
GetWindowTextLengthA
TrackPopupMenu
SetScrollRange
SendMessageW
IsCharUpperA
GetWindowLongA
SetCursor
GetClassLongA

gdi32

CreatePenIndirect
GetPixel
GetBkMode
GetCurrentPositionEx
RestoreDC
CreateCompatibleDC
GetDCOrgEx
CreateDIBSection

kernel32

ExitProcess
VirtualAllocEx
LockResource
RaiseException
SetEndOfFile
LocalAlloc
lstrlenA

Exports

Exports

_b

Sections

.text
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 128KB - Virtual size: 188KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

bbs
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

edata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

954b973b9ed785bf9e5b9d642958ecb5

Headers

File Characteristics

Imports

user32

gdi32

kernel32

Exports

Exports

Sections

.text Size: 24KB - Virtual size: 23KB

.data Size: 128KB - Virtual size: 188KB

bbs Size: 2KB - Virtual size: 1KB

edata Size: 2KB - Virtual size: 1KB

.tls Size: 512B - Virtual size: 24B

.rdata Size: 512B - Virtual size: 24B

.idata Size: 1KB - Virtual size: 1KB

.bss Size: 2KB - Virtual size: 2KB

.rsrc Size: 15KB - Virtual size: 15KB

.text
Size: 24KB - Virtual size: 23KB

.data
Size: 128KB - Virtual size: 188KB

bbs
Size: 2KB - Virtual size: 1KB

edata
Size: 2KB - Virtual size: 1KB

.tls
Size: 512B - Virtual size: 24B

.rdata
Size: 512B - Virtual size: 24B

.idata
Size: 1KB - Virtual size: 1KB

.bss
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 15KB - Virtual size: 15KB