83e3b8d542c34a136d0dc414a012d76f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

83e3b8d542c34a136d0dc414a012d76f_JaffaCakes118
Size

2.0MB
MD5

83e3b8d542c34a136d0dc414a012d76f
SHA1

6d168a7baaad68e6fe27b732dd87d8141b7e545d
SHA256

44a14d88887ddd5e6520ed4308b394baa77fa7194b5d1a3e82c32363f66bc71d
SHA512

0d0ef260028a1e118e762f880751bf720156d18bce9cb91146ad5bb4346850513a4d3bf3d18ac7b654ec51024dfd896a3c77d661ad8ed99994fe9a03c9398e1d
SSDEEP

49152:Wuu6TMMMMMMMMMMMMMMMMMM8RMMMMMMMMMMMMMMMMMMuoRvnZciDPNekgkNNBBA/:WT6TMMMMMMMMMMMMMMMMMM8RMMMMMMMV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
83e3b8d542c34a136d0dc414a012d76f_JaffaCakes118

Files

83e3b8d542c34a136d0dc414a012d76f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7e9a23058d41cc6507b24eb50ef74261

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA

user32

MessageBoxA

advapi32

RegOpenKeyExA

comctl32

InitCommonControls

mfc80u

ord709

msvcr80

_open_osfhandle

gdi32

SetBkMode

msimg32

AlphaBlend

shell32

ShellExecuteW

shlwapi

PathRemoveExtensionW

ole32

CreateStreamOnHGlobal

oleaut32

VarBstrCmp

urlmon

CoInternetGetSession

gdiplus

GdiplusShutdown

msvcp80

?begin@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$_String_const_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ

toolkitpro1300vc80u

?OnThemeChanged@CXTPControl@@UAEXXZ

winmm

mmioInstallIOProcW

msvfw32

MCIWndCreateW

setupapi

SetupDiEnumDeviceInfo

rpcrt4

UuidCreate

rebuscontainer

?g_wasFatalError@@3HA

rebuscore

?isGoodSearchString@CSearchWrapper@RebusCore@@QBE_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z

version

GetFileVersionInfoSizeW

Sections

.rdata
Size: - Virtual size: 1.9MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 172KB - Virtual size: 172KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.itext
Size: 65KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

7e9a23058d41cc6507b24eb50ef74261

Headers

File Characteristics

Imports

kernel32

user32

advapi32

comctl32

mfc80u

msvcr80

gdi32

msimg32

shell32

shlwapi

ole32

oleaut32

urlmon

gdiplus

msvcp80

toolkitpro1300vc80u

winmm

msvfw32

setupapi

rpcrt4

rebuscontainer

rebuscore

version

Sections

.rdata Size: - Virtual size: 1.9MB

.bss Size: 2KB - Virtual size: 4KB

.rsrc Size: 172KB - Virtual size: 172KB

.itext Size: 65KB - Virtual size: 68KB

.rdata
Size: - Virtual size: 1.9MB

.bss
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 172KB - Virtual size: 172KB

.itext
Size: 65KB - Virtual size: 68KB