b13b97c23b94fb0768fa22c6d44d955f_JaffaCakes118

General

Target

b13b97c23b94fb0768fa22c6d44d955f_JaffaCakes118
Size

112KB
MD5

b13b97c23b94fb0768fa22c6d44d955f
SHA1

3e38af78c3596e7de45cb383a268c426d93ac008
SHA256

c03a72f839a7c42120548715b35cb228f7e9acaae15823641f02e92e9b58d7ca
SHA512

cb1b7c9e1346e6864eead92a276c7f0341e71bd2aff10f8c67b4cb9a7b16027151d38114dffb8bc42ab48146d1e3346f4fc64a4cba38cd37184ca889809aef99
SSDEEP

3072:mVcHVcDoQ3qFnNXrnWPmhk7hPuRsr9DfW:qFDl3j7ZfDe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b13b97c23b94fb0768fa22c6d44d955f_JaffaCakes118

Files

b13b97c23b94fb0768fa22c6d44d955f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

87b22407239bfff6d16a38c57cd20d4c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_Replace
ImageList_AddMasked
ImageList_DragEnter
ImageList_Create
ImageList_BeginDrag
ImageList_EndDrag
ImageList_LoadImageA
ImageList_LoadImage
ImageList_GetDragImage
ImageList_DragLeave
ImageList_Destroy
ImageList_GetIcon
ImageList_Copy
ImageList_GetImageRect
ImageList_DrawIndirect
ImageList_GetImageInfo
ImageList_Merge
ImageList_Draw
ImageList_DrawEx

advapi32

RegDeleteKeyW
RegEnumValueA
RegGetKeySecurity
RegQueryInfoKeyA
RegDeleteKeyA
RegEnumKeyA
RegQueryValueExA
RegOpenKeyA
RegOpenKeyExW
RegDeleteValueW
RegReplaceKeyA
RegOpenKeyExA
RegFlushKey
RegEnumValueW
RegQueryValueW
RegEnumKeyW
RegQueryValueExW
RegLoadKeyW
RegCreateKeyExW
RegDeleteValueA

kernel32

SetLastError
HeapAlloc
CloseHandle
GetCommandLineA
GetModuleFileNameA
GetDateFormatA
GlobalAlloc
GetFileType
GlobalFree
GetFileSize
GetStdHandle
WideCharToMultiByte
FreeLibrary
GetLastError
lstrcpyA
HeapFree
GetStringTypeA

user32

DrawTextA
IsWindow
GetCursor
CloseWindow
LoadCursorA
IsMenu
InsertMenuA
AppendMenuA
AlignRects
CopyImage
DialogBoxParamA
CalcMenuBar
BlockInput
EndDialog
DrawTextW
LoadMenuA

Sections

.text
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.mdata
Size: 96KB - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.res
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

87b22407239bfff6d16a38c57cd20d4c

Headers

File Characteristics

Imports

comctl32

advapi32

kernel32

user32

Sections

.text Size: 4KB - Virtual size: 1KB

.mdata Size: 96KB - Virtual size: 93KB

.rdata Size: 4KB - Virtual size: 72KB

.res Size: 4KB - Virtual size: 1KB

.text
Size: 4KB - Virtual size: 1KB

.mdata
Size: 96KB - Virtual size: 93KB

.rdata
Size: 4KB - Virtual size: 72KB

.res
Size: 4KB - Virtual size: 1KB