af8480de7fd64d066d7acffbce1d6766_JaffaCakes118

General

Target

af8480de7fd64d066d7acffbce1d6766_JaffaCakes118
Size

216KB
MD5

af8480de7fd64d066d7acffbce1d6766
SHA1

da288b2db7729eb8444d5803ef2bbe8991b1d091
SHA256

b2b1c98a908c358c83977dd04b1d29adb26b109f288efcf62f7bbaa5edcaa717
SHA512

05abc761e3e0cc3969facc60d69f3bb44c5bee13f47e03a0829270c426a2f6a919fade201435ea84a52440dd60c830a40c39a38596d4ef34c790234e2819821d
SSDEEP

3072:J24+I9BuUSoQikL+HUcvHH/05fw50qMhFPkFu/KTEcfJ1C7QTH:3+ICnpiOcv/rMhRkFmcfm7K

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
af8480de7fd64d066d7acffbce1d6766_JaffaCakes118

Files

af8480de7fd64d066d7acffbce1d6766_JaffaCakes118
.exe windows:4 windows x86 arch:x86

69921f2cdde97ab78342b567a8fab455

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHAppBarMessage
SHBindToParent
SHBrowseForFolderW
SHGetFileInfo
SHGetFolderLocation
SHGetMalloc

user32

CallWindowProcA
CloseClipboard
DestroyWindow
DrawEdge
DrawFrameControl
DrawTextA
EnableMenuItem
GetParent
IntersectRect
IsRectEmpty
LoadCursorA
RemovePropA
SetPropA
SetWindowPos
SetWindowsHookExA
WindowFromPoint

gdi32

BeginPath
CloseEnhMetaFile
CreateCompatibleDC
Ellipse
EnumFontFamiliesExA
GetBkColor
GetDIBColorTable
GetEnhMetaFileBits
GetObjectType
GetPaletteEntries
GetViewportExtEx
InvertRgn
OffsetRgn
Polyline
SetBkMode
StrokePath

kernel32

CloseHandle
CompareStringA
CreateEventW
CreateFileMappingA
FileTimeToLocalFileTime
FindNextFileW
FormatMessageA
GetCurrentDirectoryA
GetDateFormatA
GetEnvironmentVariableA
GetFileSize
GetModuleFileNameA
GetStringTypeA
GetSystemDirectoryW
GetUserDefaultLangID
IsBadWritePtr
QueryPerformanceCounter
ResetEvent
WriteFile

Sections

.text
Size: 89KB - Virtual size: 89KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

dYrtJY8t
Size: 1KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

69921f2cdde97ab78342b567a8fab455

Headers

File Characteristics

Imports

shell32

user32

gdi32

kernel32

Sections

.text Size: 89KB - Virtual size: 89KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 100KB - Virtual size: 99KB

.rsrc Size: 22KB - Virtual size: 21KB

dYrtJY8t Size: 1KB - Virtual size: 120KB

.text
Size: 89KB - Virtual size: 89KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 100KB - Virtual size: 99KB

.rsrc
Size: 22KB - Virtual size: 21KB

dYrtJY8t
Size: 1KB - Virtual size: 120KB