8218e38eaa74b859306bb8ffb315061d_JaffaCakes118

General

Target

8218e38eaa74b859306bb8ffb315061d_JaffaCakes118
Size

23KB
MD5

8218e38eaa74b859306bb8ffb315061d
SHA1

f5e5c96d931c595805b4692fe96dc63428ef6876
SHA256

4503934318d645f376fdefc0bb0df8c569af7f59a09a128c0d1cad29f394d449
SHA512

81d8951ba8139e9e0e0832eb00b7418a3526a3c689fdfa7efae50a22ae0fd9c21ba9557662e743dae6a77d170339a1982dcd5d35f6e0f81a87a71e2f0f8bfb5d
SSDEEP

384:GJQQv32vCmynsAMW+/chHPmhOiimvv2SYadxVC9CUIj4iruP6TtAJjvs:GJQQv26mYTo/cpmhlv9YadTOirsKks

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8218e38eaa74b859306bb8ffb315061d_JaffaCakes118

Files

8218e38eaa74b859306bb8ffb315061d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a082dd4f7a8daedec1b2ab3a72aa3ca9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

QueryPerformanceCounter
lstrlenW
lstrcmpi
lstrlen
GetCurrentThreadId
GetTickCount
LocalAlloc
GetModuleHandleA
GetModuleHandleW
lstrcpyA
lstrlenA
QueryPerformanceFrequency
lstrcmpA
GetACP
LoadLibraryW
LocalFree
LoadLibraryA
lstrcatA
VirtualProtect
FreeLibrary
SetUnhandledExceptionFilter
GetCommandLineW
GetCommandLineA

user32

GetWindowRect
GetForegroundWindow
GetParent
GetActiveWindow
LoadMenuW
RegisterClassExW
GetWindowLongA
PostMessageW
LoadStringW
LoadImageW
LoadCursorA
LoadStringA
CheckMenuItem
GetWindowTextLengthW
SetTimer
LoadIconW
ChangeMenuW
GetSystemMenu
GetWindowLongW
UpdateWindow
LoadImageA
CheckRadioButton
GetCapture
UpdateLayeredWindow
GetWindowTextLengthA
CharUpperW
GetMenu
ShowWindow
GetDlgItem
RegisterClassExA
DefWindowProcW
LoadMenuA
RegisterWindowMessageW
IsWindowEnabled

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 844B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a082dd4f7a8daedec1b2ab3a72aa3ca9

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 10KB - Virtual size: 9KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 9KB - Virtual size: 9KB

.rsrc Size: 1024B - Virtual size: 844B

.text
Size: 10KB - Virtual size: 9KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 9KB - Virtual size: 9KB

.rsrc
Size: 1024B - Virtual size: 844B