8cbbfb77d3262cf5a308b742b68454ca_JaffaCakes118

General

Target

8cbbfb77d3262cf5a308b742b68454ca_JaffaCakes118
Size

269KB
MD5

8cbbfb77d3262cf5a308b742b68454ca
SHA1

14dc03cc7b3ad2ff614311da93ceb9da8fd57a07
SHA256

d3e4414c0a20a5dd96bcbacd0c1ab3afbe2c9d4a7219ba685991948efbbbc73f
SHA512

163bb7b10471a098ebbfa036ce0a2bb26f5b1fe7f942d4a5f598101b2b6e26ac7c01fdd763afbbdefe0bd47a9f98a733ac36647f728a3ebeec37405146261d7d
SSDEEP

6144:6zH/6SQdjk5N7YE2xSjus+Oi8wiMhU4hkK:6zH/6HjAjwOi8jMxeK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8cbbfb77d3262cf5a308b742b68454ca_JaffaCakes118

Files

8cbbfb77d3262cf5a308b742b68454ca_JaffaCakes118
.exe windows:5 windows x86 arch:x86

563152a425295839ab5f5b4b7a3e95fc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetSubMenu
IsWindow
FindWindowExW
MonitorFromRect
DrawTextW
CheckDlgButton
BeginDeferWindowPos
DestroyWindow
DrawFocusRect
RedrawWindow
IsCharLowerA
GetDCEx
OemToCharA
RegisterClassExA
GetDialogBaseUnits
GetClassInfoA
SendMessageW
SetCursor
RegisterWindowMessageA
GetClipCursor
LoadBitmapW
CharLowerA
SetLastErrorEx
GetKeyboardLayout
DrawStateW
GetFocus
GetMenu
GetWindowTextW
GetWindowTextA
GetDC
MessageBoxExA
ShowWindow
PostThreadMessageW
HideCaret
SetSysColors
DestroyMenu

gdi32

RestoreDC
PtVisible
GetTextCharsetInfo
GetDIBits
SetStretchBltMode
OffsetViewportOrgEx
CreateFontA
GetCurrentPositionEx
CombineRgn
LineTo
CreateDIBitmap
CreateBitmapIndirect
SetWindowOrgEx
GetTextColor
FillRgn
DPtoLP
CreateRoundRectRgn

comctl32

ImageList_Remove
ImageList_Draw
ImageList_AddMasked
PropertySheetA
ImageList_Read
ImageList_Create

kernel32

GetCommModemStatus
RemoveDirectoryW
GetTempPathA
CreateEventW
SetTimerQueueTimer
GetAtomNameW
GetCommandLineW
HeapValidate
EnumSystemLocalesA
GetPriorityClass
GetSystemWindowsDirectoryA
ClearCommError
FileTimeToDosDateTime
lstrlenW
GetThreadContext
CopyFileW
GetCommTimeouts
DeleteFileW
GetFileAttributesExW

ntdll

memcpy

Exports

Exports

?UDIuJHFhjHJJHFiufYIFYiuyfd@@YGKEPA_WG@Z

Sections

.text
Size: 169KB - Virtual size: 168KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

data
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 79KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

563152a425295839ab5f5b4b7a3e95fc

Headers

File Characteristics

Imports

user32

gdi32

comctl32

kernel32

ntdll

Exports

Exports

Sections

.text Size: 169KB - Virtual size: 168KB

data Size: 18KB - Virtual size: 17KB

.rsrc Size: 79KB - Virtual size: 80KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 169KB - Virtual size: 168KB

data
Size: 18KB - Virtual size: 17KB

.rsrc
Size: 79KB - Virtual size: 80KB

.reloc
Size: 2KB - Virtual size: 1KB