864dead159e9ea3bf9697c6709c1778b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

864dead159e9ea3bf9697c6709c1778b_JaffaCakes118
Size

144KB
MD5

864dead159e9ea3bf9697c6709c1778b
SHA1

b1b8d63b1b4deba1e6e7112e8e8e4b24ab34ada7
SHA256

186da3cf89c4dff30bca5aaacb70ded9d41aa7406165c0477ddca6fa2c8ba3c7
SHA512

8f229e010c4ecf6612931112fb488f0c9fd572be167a3cc30054d3292eb483384debada19db1ebdb50aaa3159452dc1c046aaf64fb157166d6f9824af6cabf77
SSDEEP

3072:wlis+MeOpYvCnBvrF4fgpsSZ8XVaJh4X40KZ1d+5ZL9HdQ+:wqMRpYYR4f8kar4X404OZL99Q+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
864dead159e9ea3bf9697c6709c1778b_JaffaCakes118

Files

864dead159e9ea3bf9697c6709c1778b_JaffaCakes118
.exe windows:5 windows x86 arch:x86

073776fb38e7b7ab107ee0c56fefc713

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

StrCmpW
StrFromTimeIntervalW
PathCommonPrefixW

shell32

ord147

kernel32

lstrcpyW
GetCommandLineW
lstrcmpA
GetCommState
SetCommBreak
GetHandleInformation
CreateWaitableTimerA
OpenSemaphoreW
GetNamedPipeInfo
CreateEventA
LoadLibraryW

user32

UpdateWindow
WindowFromDC
DrawMenuBar
GetDC
GetDlgItemInt
GetWindow

gdi32

CreateCompatibleDC
GetCharABCWidthsW
ChoosePixelFormat
SetROP2
GetRasterizerCaps
FillPath
SaveDC
LPtoDP
GetEnhMetaFileDescriptionW
UpdateColors

advapi32

AddAuditAccessAce
GetAclInformation

Exports

Exports

__AdjustWindowRect@12

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.exdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.secimg
Size: 1024B - Virtual size: 597B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.memo0
Size: 512B - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.c_mem
Size: 512B - Virtual size: 60B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.datse
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 129KB - Virtual size: 129KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 620B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

073776fb38e7b7ab107ee0c56fefc713

Headers

File Characteristics

Imports

shlwapi

shell32

kernel32

user32

gdi32

advapi32

Exports

Exports

Sections

.text Size: 6KB - Virtual size: 6KB

.exdata Size: 1KB - Virtual size: 1KB

.secimg Size: 1024B - Virtual size: 597B

.data Size: 512B - Virtual size: 436B

.memo0 Size: 512B - Virtual size: 40B

.c_mem Size: 512B - Virtual size: 60B

.datse Size: 2KB - Virtual size: 2KB

.rsrc Size: 129KB - Virtual size: 129KB

.reloc Size: 1024B - Virtual size: 620B

.text
Size: 6KB - Virtual size: 6KB

.exdata
Size: 1KB - Virtual size: 1KB

.secimg
Size: 1024B - Virtual size: 597B

.data
Size: 512B - Virtual size: 436B

.memo0
Size: 512B - Virtual size: 40B

.c_mem
Size: 512B - Virtual size: 60B

.datse
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 129KB - Virtual size: 129KB

.reloc
Size: 1024B - Virtual size: 620B