83758c56e2d539c3c3eea22ac2e8cdbc_JaffaCakes118

General

Target

83758c56e2d539c3c3eea22ac2e8cdbc_JaffaCakes118
Size

281KB
MD5

83758c56e2d539c3c3eea22ac2e8cdbc
SHA1

97535aedba2171d64a6f4974548775edf31fa8f0
SHA256

9f1fbcb4e4e81c1a0d717a2079524c80767161ac423919525b9bb6d8b2290b5f
SHA512

c1b328b4ce5e5a547493e1992404ba44785f1ea252d09660e417d6dbf676d80050c4918c02b8bd8ee656b6b0e4a7d348742c583ebbed6c0c5db42c259f8b654a
SSDEEP

6144:V4aOp17OOhAS88FJlj3bnhsU5s2CCVnAF8uM0EzXF5LEE4:JOp9Hx88FfrnhsKxR68uMTB5LEl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
83758c56e2d539c3c3eea22ac2e8cdbc_JaffaCakes118

Files

83758c56e2d539c3c3eea22ac2e8cdbc_JaffaCakes118
.exe windows:4 windows x86 arch:x86

fbccaced729041795e4f0d00222b5f7e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteFile
SuspendThread
LoadLibraryW
MultiByteToWideChar
GetFileSize
FreeLibrary
GetCurrentThreadId
VirtualAlloc
SetThreadPriority
SetWaitableTimer
DuplicateHandle
CreateFileW
ResetEvent
GetLastError
CreateEventW
Sleep
FindResourceExW
GetModuleFileNameW
FindFirstChangeNotificationW
VirtualFree
ExitProcess
GetProcAddress
GetProcessHeap
HeapAlloc
HeapFree
HeapSize
IsBadReadPtr
LoadLibraryA
VirtualProtect
SetEndOfFile
GetCurrentThread
CreateWaitableTimerW
GetFileAttributesExW
ReadFile
SetFilePointer
WideCharToMultiByte
FindResourceW
DeleteFileW
GetDriveTypeW
FindNextFileW
SizeofResource
GlobalFree
GetLocalTime
CloseHandle
SetLastError
QueryDosDeviceW

user32

LoadStringW
SetWindowPos
GetCursorPos
SetCursorPos
InvalidateRect
CreatePopupMenu
GetWindowTextW
IsWindow
GetSysColor
SetForegroundWindow
OffsetRect
GetMessageW
DispatchMessageW
ReleaseCapture
GetDlgItem
IsDlgButtonChecked
DestroyIcon
GetClassNameW
LoadIconW
UpdateWindow
RegisterHotKey
DrawTextW
DefWindowProcW
PostQuitMessage
GetParent
SendMessageW
DestroyMenu
RedrawWindow
FillRect
LoadImageW
DialogBoxParamW

gdi32

GetStockObject
SetBkMode
GetClipBox
SetTextColor
StretchBlt
Rectangle
MoveToEx
SetBkColor
CreatePen
DPtoLP
CreateCompatibleDC

advapi32

RegCloseKey
RegSetValueExW
RegQueryValueExW
RegDeleteValueW

shell32

Shell_NotifyIconW

ole32

CoInitialize
CoInitializeEx

oleaut32

SysFreeString
OleLoadPicture

Sections

.text
Size: 244KB - Virtual size: 243KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

fbccaced729041795e4f0d00222b5f7e

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

Sections

.text Size: 244KB - Virtual size: 243KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 28KB - Virtual size: 25KB

.text
Size: 244KB - Virtual size: 243KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 28KB - Virtual size: 25KB