958152856a20f878c14d3ee91ac7ab24_JaffaCakes118

General

Target

958152856a20f878c14d3ee91ac7ab24_JaffaCakes118
Size

74KB
MD5

958152856a20f878c14d3ee91ac7ab24
SHA1

e8d0d875a7161d40aa59a36bf6144412d4df5a02
SHA256

7e28303217c5f5ad7992991c5fd6c2c50d008fa0cb361aeebd7efff5ce811148
SHA512

d2f5fb2d327b9ab781570166c2301d6f91a2633ad54fe6af8a063616fc29862a3e43277173fa5e4abeb58218de822bb85966d72dee3f32b7ec6d578829db1723
SSDEEP

768:R5T18M9sao+fNlv4Hy5VVwnoDGqP6WojtWEOEmh:R5T18esTslv4Hy5VVwzqPnBis

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
958152856a20f878c14d3ee91ac7ab24_JaffaCakes118

Files

958152856a20f878c14d3ee91ac7ab24_JaffaCakes118
.exe windows:4 windows x86 arch:x86

03c62866a88b36295e8841e62aecced9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControls

gdi32

CreateSolidBrush
CreatePen
RoundRect
SelectObject
SetBkMode
SetTextColor
CreateFontA
DeleteObject

comdlg32

GetFileTitleA

kernel32

CloseHandle
CreateFileA
CreateFileMappingA
CreateProcessA
CreateRemoteThread
ExitProcess
FindResourceA
GetCommandLineA
GetCurrentProcessId
GetFileSize
GetModuleHandleA
GetProcAddress
GetThreadContext
LoadResource
LockResource
MapViewOfFile
ReadProcessMemory
ResumeThread
SetThreadContext
SizeofResource
Sleep
SuspendThread
UnmapViewOfFile
VirtualAllocEx
VirtualProtectEx
WriteFile
WriteProcessMemory
lstrcatA
lstrcpyA
lstrlenA

user32

DialogBoxParamA
DrawEdge
DrawTextA
EndDialog
EndPaint
FillRect
GetCursorPos
GetDlgCtrlID
GetDlgItem
IsDlgButtonChecked
CreatePopupMenu
LoadIconA
ReleaseCapture
SendDlgItemMessageA
SendMessageA
SetDlgItemTextA
SetRect
SetTimer
SetWindowTextA
ShowWindow
TrackPopupMenu
CheckDlgButton
BeginPaint
AppendMenuA
KillTimer
wsprintfA

shell32

DragQueryFileA
DragFinish
DragAcceptFiles
Shell_NotifyIconA

Sections

.code
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 46KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

03c62866a88b36295e8841e62aecced9

Headers

File Characteristics

Imports

comctl32

gdi32

comdlg32

kernel32

user32

shell32

Sections

.code Size: 8KB - Virtual size: 8KB

.idata Size: 20KB - Virtual size: 20KB

.rsrc Size: 46KB - Virtual size: 48KB

.code
Size: 8KB - Virtual size: 8KB

.idata
Size: 20KB - Virtual size: 20KB

.rsrc
Size: 46KB - Virtual size: 48KB