94bfb76aa6ae6261d5314b8d180303f2_JaffaCakes118

General

Target

94bfb76aa6ae6261d5314b8d180303f2_JaffaCakes118
Size

3.8MB
MD5

94bfb76aa6ae6261d5314b8d180303f2
SHA1

4655196c000724519361d1d1f9a469af56e06082
SHA256

77d4f6af0a6dbcc0ebae56fa7202b9a5d2eeabc36c0e6781f6d3cee748952ae6
SHA512

2ae7abe5e9ac18a34d0d6def3c69aa1fc2d11fe5e06028324bcd20d7fc25b14c86a2d2c158ca7d81563625c96a4ae4fb1d423e6b13226ee84bddf9d4fc1b790b
SSDEEP

98304:jvXduljY1KcO8Go4ekgymUZgNbV+wIOPfA+zXVJsT/gmxbD+SYyzM:LD1AQ4FaUyNB/XJKgMb1zM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
94bfb76aa6ae6261d5314b8d180303f2_JaffaCakes118

Files

94bfb76aa6ae6261d5314b8d180303f2_JaffaCakes118
.exe windows:4 windows x86 arch:x86

cfe73124486bdb3b9a70911d99e1e572

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetAtomNameA
GlobalFindAtomA
CreateMutexA
FreeEnvironmentStringsA
OpenMutexA
GetTickCount
GetFileAttributesExA
UnhandledExceptionFilter
PeekConsoleInputW
WritePrivateProfileSectionA
LocalSize
GetSystemInfo
MoveFileW
GenerateConsoleCtrlEvent
SetEvent
GlobalFree
GetPrivateProfileSectionW
SetConsoleOutputCP
EnumSystemCodePagesW
ReadConsoleOutputA
DebugBreak
CreateMutexW
PrepareTape
GetACP
ExitProcess

comdlg32

GetOpenFileNameW
ReplaceTextA

user32

ModifyMenuW
SetLastErrorEx
BroadcastSystemMessageW
WaitMessage
GetMenuItemRect
DrawTextA
FrameRect
ScrollDC
PostMessageW
RegisterWindowMessageW
OpenWindowStationA
ShowCursor
MonitorFromWindow
SetDlgItemTextW
DrawIconEx
GetMessagePos
DialogBoxParamA
GetCaretBlinkTime
SendMessageCallbackW
ChangeDisplaySettingsW
LoadMenuA
GetDoubleClickTime
IsWindowUnicode
ValidateRect
GetTabbedTextExtentW
CopyAcceleratorTableA
TranslateAcceleratorW
SetCapture

comctl32

CreatePropertySheetPageA
ImageList_GetBkColor

msvcrt

_snprintf
ftell
_wremove
_isatty
_mbschr
fgetwc
_wsystem
_wpopen
fopen
_wfopen
_splitpath
_wcsnicmp
_ui64tow
_ismbcdigit
_wsopen
_mbsrchr
iswprint
srand
fgetc
_beginthread
_mbsstr

Sections

.text
Size: 12KB - Virtual size: 231KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3.5MB - Virtual size: 3.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cfe73124486bdb3b9a70911d99e1e572

Headers

File Characteristics

Imports

kernel32

comdlg32

user32

comctl32

msvcrt

Sections

.text Size: 12KB - Virtual size: 231KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 3.5MB - Virtual size: 3.5MB

.rsrc Size: 19KB - Virtual size: 18KB

.text
Size: 12KB - Virtual size: 231KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 3.5MB - Virtual size: 3.5MB

.rsrc
Size: 19KB - Virtual size: 18KB