95d24929ca25e6edf58ddb9f61059ab8_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

95d24929ca25e6edf58ddb9f61059ab8_JaffaCakes118
Size

204KB
MD5

95d24929ca25e6edf58ddb9f61059ab8
SHA1

6f3304372fd8a705bb5cbd364b5b118651161929
SHA256

b4206e267e21e8721be46b10643fed20f5afb56349f49ac5e2c7d1af3bf3654a
SHA512

430508d5b48df6d18b378a32b9e761ab5613b951e998b14aa6b4ac2e65414844654638b2a8146e2023352e3a09e3cdf7701750d5b6c9e2785d6830bf8c1fcb15
SSDEEP

3072:EAU4g4RABYC7sk5tybKB10EEM5tZjY/RkIkaNBfjOLnypmfK8Xlo:EAzdA6kK+B10M530/S7YqTyE1l

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
95d24929ca25e6edf58ddb9f61059ab8_JaffaCakes118

Files

95d24929ca25e6edf58ddb9f61059ab8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a50e03a09fad54ec938e015ca3f98bdc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

user32

MoveWindow
GetScrollInfo
EqualRect
CheckMenuItem
UnhookWindowsHookEx
PostQuitMessage
GetMessagePos
DrawEdge
GetWindowThreadProcessId
SendMessageA
ShowScrollBar
GetKeyboardLayout
GetWindowRect
DestroyCursor
SetScrollInfo
ReleaseDC
GetMenu
GetClipboardData
PeekMessageA
SetScrollRange
UnregisterClassA
GetDC
SetWindowTextA
SetCapture
DrawTextA
IsWindowVisible
RegisterClassA
CreateIcon
SetMenu
GetMenuItemInfoA
PtInRect
GetKeyState
DrawIcon
wsprintfA
GetMenuItemCount
PeekMessageW
SetRect
DeleteMenu
IsDialogMessageA
GetClassNameA
CloseClipboard
ScreenToClient
TranslateMDISysAccel
SetForegroundWindow
DestroyMenu
GetSubMenu
GetTopWindow
GetMenuItemID
IsZoomed
GetWindowLongW
DispatchMessageW
GetDCEx
LoadKeyboardLayoutA
SetClipboardData
GetParent
RegisterWindowMessageA
ChildWindowFromPoint
SendMessageW
GetWindowTextA
SetParent
IsChild
OemToCharA
MapVirtualKeyA
EnumChildWindows
DrawMenuBar
CharNextW
SetScrollPos
TrackPopupMenu
SetFocus
LoadCursorA
GetLastActivePopup
CallWindowProcA
RedrawWindow

gdi32

CreateCompatibleBitmap
GetDIBColorTable
CreateBitmap
GetObjectA
GetDIBits
GetCurrentPositionEx
SetPixel
CreateCompatibleDC
SetBkColor
CopyEnhMetaFileA

kernel32

VirtualAlloc
GetACP
GetCommandLineW
GetLastError
ExitThread
IsBadReadPtr
LocalAlloc
LoadLibraryExA
GetModuleHandleA
VirtualAllocEx
GetCommandLineA
ExitProcess
LoadLibraryA
GetProcAddress

version

VerFindFileA
VerQueryValueA

shlwapi

PathGetCharTypeA
SHGetValueA
SHStrDupA
SHEnumValueA
SHDeleteValueA
PathIsDirectoryA
PathFileExistsA
SHSetValueA

Sections

.text
Size: 69KB - Virtual size: 69KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 404B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RSRC7
Size: 512B - Virtual size: 146B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RSRC3
Size: 124KB - Virtual size: 123KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RSRC9
Size: 1024B - Virtual size: 540B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RSRC5
Size: 512B - Virtual size: 108B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.RSRC2
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RSRC8
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 992B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a50e03a09fad54ec938e015ca3f98bdc

Headers

File Characteristics

Imports

user32

gdi32

kernel32

version

shlwapi

Sections

.text Size: 69KB - Virtual size: 69KB

DATA Size: 512B - Virtual size: 404B

.RSRC7 Size: 512B - Virtual size: 146B

.RSRC3 Size: 124KB - Virtual size: 123KB

.RSRC9 Size: 1024B - Virtual size: 540B

.RSRC5 Size: 512B - Virtual size: 108B

.RSRC2 Size: 1KB - Virtual size: 1KB

.RSRC8 Size: 4KB - Virtual size: 4KB

.rsrc Size: 1024B - Virtual size: 992B

.text
Size: 69KB - Virtual size: 69KB

DATA
Size: 512B - Virtual size: 404B

.RSRC7
Size: 512B - Virtual size: 146B

.RSRC3
Size: 124KB - Virtual size: 123KB

.RSRC9
Size: 1024B - Virtual size: 540B

.RSRC5
Size: 512B - Virtual size: 108B

.RSRC2
Size: 1KB - Virtual size: 1KB

.RSRC8
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 1024B - Virtual size: 992B