8ce87fa325fe53cb565580e9b22d303f_JaffaCakes118

General

Target

8ce87fa325fe53cb565580e9b22d303f_JaffaCakes118
Size

14KB
MD5

8ce87fa325fe53cb565580e9b22d303f
SHA1

b316626a6b31dae969a0c1737cdbc9de1989514e
SHA256

a7fd527927907ddd7f5835ebbbfae61b4bd86f491a4c9db5d070f70a2b7be8ea
SHA512

095c0095ea4999a63d8ccbb45f9ec94293d871619c21325aba5748d415df24982660626a098654b1f4d2edec5ffdf9124fa460c9bf4d571c7c8f63bb598b0ae8
SSDEEP

384:dKbKA2alecD3YvSgzZus+w009iGdVL8g:qv2Sd3YvloRyd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8ce87fa325fe53cb565580e9b22d303f_JaffaCakes118

Files

8ce87fa325fe53cb565580e9b22d303f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

aa9920b16d6e40c2c9c6ff360721eed8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
HeapAlloc
HeapFree
GetStartupInfoA
CloseHandle
VirtualFree
VirtualAlloc
GetProcessHeap
LocalFree
LocalAlloc
GetModuleHandleA

user32

GetDC
ReleaseDC
DrawTextA
SetWindowsHookExW
FindWindowA
GetClassInfoExW
GetMessagePos
GetWindowLongW
UpdateWindow
DefWindowProcW
GetClassNameW
CallNextHookEx
IsDialogMessageW
EnumWindows
SetWindowTextA
SendMessageTimeoutA
SendMessageA
GetFocus
SetFocus
EnumChildWindows
SetWindowPos
ShowWindow
IsDlgButtonChecked
CheckDlgButton
AppendMenuA
CallWindowProcA
GetMessageA
GetWindowLongA
TrackPopupMenu
GetCursorPos
AppendMenuW
CreatePopupMenu
DrawFrameControl
FillRect
GetSysColorBrush
GetActiveWindow
InflateRect
ClientToScreen
InsertMenuItemW
IntersectRect
CreateMenu
GetPropA
LoadCursorA
RegisterClassExW
GetAsyncKeyState
ScreenToClient
CreateWindowExA

msvcrt

_onexit
_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
_XcptFilter
_exit
strchr
malloc
free
fopen
fseek
fputs
fwrite
fclose
atoi
exit
wcslen
memmove
strncmp
time
__dllonexit

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 456B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 174B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

aa9920b16d6e40c2c9c6ff360721eed8

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

Sections

.text Size: 7KB - Virtual size: 6KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 2KB - Virtual size: 23KB

.rsrc Size: 512B - Virtual size: 456B

.reloc Size: 512B - Virtual size: 174B

.text
Size: 7KB - Virtual size: 6KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 2KB - Virtual size: 23KB

.rsrc
Size: 512B - Virtual size: 456B

.reloc
Size: 512B - Virtual size: 174B