a2724e07b8a5efd2b49f193c11fb3d92_JaffaCakes118

General

Target

a2724e07b8a5efd2b49f193c11fb3d92_JaffaCakes118
Size

29KB
MD5

a2724e07b8a5efd2b49f193c11fb3d92
SHA1

981baad49ee64f681390d493b789daf835b8b4ef
SHA256

867b668c7c36111c314c49451fd86b0ce0dcf45b138d21bf254411ee061f0c1b
SHA512

11c7b63c44ace39400fa38974d1fa8455ba58f1a623a01c54319e1ae99119e721db04a566389941af72764e8771b34d975ac1fca156eba501e926bfd7f822021
SSDEEP

768:nlknLDhacD+y06DtwVFeXYDchnlyL8wTo:OLDhpDtzYITyL8wTo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a2724e07b8a5efd2b49f193c11fb3d92_JaffaCakes118

Files

a2724e07b8a5efd2b49f193c11fb3d92_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3ef90c33b7ab9ef0538a7dccdbf5c564

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcess
lstrcmpW
GetModuleHandleW
lstrcmpiW
VirtualProtect
MultiByteToWideChar
GetTickCount
lstrlenW
lstrlen
lstrcat
GetCommandLineW
SetUnhandledExceptionFilter
lstrcpynW
LocalFree
LoadLibraryW
LocalAlloc
lstrcatW
lstrcpyA
GetCurrentThreadId

user32

GetWindowTextLengthA
GetDlgItem
GetParent
LoadMenuW
GetWindowTextW
UpdateLayeredWindow
MoveWindow
LoadImageA
GetWindowLongW
CheckMenuItem
PostMessageW
GetSystemMenu
GetActiveWindow
LoadIconW
RegisterClassExA
EnableWindow
SetTimer
GetForegroundWindow
GetWindowLongA
CheckRadioButton
ShowWindow
CharUpperW
IsWindowEnabled
LoadStringA
LoadMenuA
RegisterWindowMessageA
LoadCursorW
GetSystemMetrics
GetKeyState
DefWindowProcA
DrawIcon
CharUpperA
SendMessageW
RegisterClassExW
GetMenu
GetWindowTextA
LoadImageW
LoadCursorA

gdi32

CreateFontW
CreateFontIndirectA
CreateFontIndirectExA
StretchBlt
CreatePalette

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3ef90c33b7ab9ef0538a7dccdbf5c564

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 11KB - Virtual size: 11KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 13KB - Virtual size: 13KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 11KB - Virtual size: 11KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 13KB - Virtual size: 13KB

.rsrc
Size: 1KB - Virtual size: 1KB