9598e69aac2fe2c3b2feeeb962ecc9a5_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

9598e69aac2fe2c3b2feeeb962ecc9a5_JaffaCakes118
Size

108KB
MD5

9598e69aac2fe2c3b2feeeb962ecc9a5
SHA1

2d6b5bd7f8ab1037fa872325c408100a1f7566b0
SHA256

3be05e3dff37b924b4ff6ef96890b9450436750ccde25c0431cc518d754afd41
SHA512

657886a7dc634d776feda1bfd8ce12fe681ec9bccdba4afda43d90c0d71810d5f31413e48c7ba481a44b7b8a8d7868581db1a4de0abaa6e06b5c72752f444a25
SSDEEP

1536:h0M1eFTl6jB4Uyk4IRi3VGnPgOf0gfQQfhp2RzQPZsd4bH3Sz:hh1exuqk4IElqsjQfhp2RRwHC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9598e69aac2fe2c3b2feeeb962ecc9a5_JaffaCakes118

Files

9598e69aac2fe2c3b2feeeb962ecc9a5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4da67dfa24db2d6503cba52ee5d2de76

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathIsDirectoryA

shell32

SHGetDiskFreeSpaceA

ole32

WriteClassStm
CLSIDFromProgID
CoDisconnectObject
StgCreateDocfileOnILockBytes
CoTaskMemFree
CreateStreamOnHGlobal

kernel32

SetEvent
GetModuleHandleA
WriteFile
GetACP
SizeofResource
VirtualAlloc
ExitProcess
GetDateFormatA
WaitForSingleObject
GetProcAddress
MoveFileA
FreeResource
LocalReAlloc
GetEnvironmentStrings
CreateEventA
ExitThread

gdi32

CreateBitmap

version

VerFindFileA
VerInstallFileA

user32

GetActiveWindow
GetCursorPos
CallNextHookEx
SetScrollInfo
SetForegroundWindow
CharUpperBuffA
GetMenuItemInfoA
OffsetRect
RemovePropA
SetRect
SetWindowLongW
SetPropA
OpenClipboard
DrawIconEx
MapWindowPoints
GetCursor
InsertMenuA
EndPaint
GetWindowPlacement
CreateWindowExA
GetScrollInfo
SendMessageA
GetWindowDC
CreateMenu
DeleteMenu
IsZoomed
DefWindowProcA
GetMenuItemCount
SetScrollPos
CharNextW
IsWindow
DefMDIChildProcA
GetWindow
PostQuitMessage
ShowOwnedPopups
InsertMenuItemA
GetTopWindow
GetClassInfoA
GetKeyboardState
GetWindowTextA
UpdateWindow
DispatchMessageA
GetClassLongA
GetDesktopWindow
BeginPaint
WaitMessage
CharNextA
RedrawWindow
PtInRect
GetSysColorBrush
GetClipboardData
DestroyIcon
SetClassLongA
SetWindowPlacement
InflateRect
CharLowerA
FillRect
GetFocus
SetCapture
IsWindowEnabled
GetMenuState
GetWindowRect
GetMenuStringA
ScreenToClient
SetFocus
MessageBoxA
WindowFromPoint
PeekMessageA
GetLastActivePopup
ShowWindow
IsDialogMessageW
ActivateKeyboardLayout
GetSystemMetrics
RegisterWindowMessageA
LoadIconA
UnregisterClassA
GetKeyboardLayoutList
MapVirtualKeyA
SetClipboardData
SetWindowLongA
LoadBitmapA
MsgWaitForMultipleObjects
DrawEdge
DrawFrameControl
ShowScrollBar
IsWindowVisible
GetPropA
DestroyWindow
FrameRect
CloseClipboard
GetKeyboardLayoutNameA
EnumThreadWindows
CharLowerBuffA
DrawTextA
CharToOemA

Sections

CODE
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 75KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

DATA
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

4da67dfa24db2d6503cba52ee5d2de76

Headers

File Characteristics

Imports

shlwapi

shell32

ole32

kernel32

gdi32

version

user32

Sections

CODE Size: 29KB - Virtual size: 29KB

.data Size: 75KB - Virtual size: 74KB

DATA Size: 3KB - Virtual size: 2KB

CODE
Size: 29KB - Virtual size: 29KB

.data
Size: 75KB - Virtual size: 74KB

DATA
Size: 3KB - Virtual size: 2KB