b1a1de039343d939bad051c31e8002ab_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b1a1de039343d939bad051c31e8002ab_JaffaCakes118
Size

76KB
MD5

b1a1de039343d939bad051c31e8002ab
SHA1

0373f2dff3cc12aa535984a113c39d93dcfa7799
SHA256

aeb66f9178fd899cce0e325cec001cc32d4bdd09cb36669f54959e178427ccd8
SHA512

ffb43496553a1aa7b39a0237ad8cfc75d4a9665ba6ae56095ba3ee71059aef9e49dd79834f03b77035922caead720e15116d1bce94a9de2929379ce211e8200c
SSDEEP

1536:WDTMoTj5eDwsC4oEJygDUwF/iFQ4wCuJv1:0xTj52CPAy6H/l4wzv1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b1a1de039343d939bad051c31e8002ab_JaffaCakes118

Files

b1a1de039343d939bad051c31e8002ab_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8273c80c459ba85d9bb774f691f708a1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

oleaut32

SysFreeString
SysStringLen
SafeArrayCreate
SafeArrayGetUBound
SysAllocStringLen
SysReAllocStringLen

user32

GetMessagePos
ChildWindowFromPoint
RemovePropA
SetWindowPlacement
OffsetRect
GetSystemMetrics
GetSysColorBrush
PostMessageA
GetCapture
GetKeyboardLayout
GetWindowLongW
SetScrollPos
InsertMenuA
MsgWaitForMultipleObjects
LoadKeyboardLayoutA
IsRectEmpty
ClientToScreen
IsWindowVisible
RegisterClipboardFormatA
EnumThreadWindows
GetScrollRange
SetMenu
GetKeyNameTextA
GetDCEx
ScrollWindow
AdjustWindowRectEx
DrawFrameControl
SystemParametersInfoA
SetClassLongA
IsWindowEnabled
WaitMessage
GetWindowLongA
InvalidateRect
EqualRect
DispatchMessageA
DefFrameProcA
GetMenuStringA
InflateRect
CloseClipboard
GetMenu
OpenIcon
CallWindowProcA
IsMenu
GetDlgItem
DrawIconEx
IsWindowUnicode
GetCursorPos
IsDialogMessageW
GetWindowTextA
PostQuitMessage
DrawTextA
LoadIconA
SetScrollRange
ReleaseDC
MoveWindow
LoadBitmapA
IsCharUpperA
EnableMenuItem
GetMenuState
KillTimer
ShowScrollBar
SetRect
GetDC
RegisterWindowMessageA

kernel32

HeapDestroy
VirtualAlloc
EnumCalendarInfoA
GetCommandLineA
MoveFileA
FindFirstFileA
ExitProcess
GetStartupInfoA
HeapFree
GetStdHandle
DeleteFileA
GetProcAddress
GetTempPathA
EnterCriticalSection
HeapAlloc
LoadLibraryA
lstrlenA
GetCommandLineW
FindResourceA
ReadFile
SetFilePointer
GetVersion

Exports

Exports

JM0H6v_o
_sSRjKbduhdXnb
BH8yJnmtbOs6lF
_Ba0s9Qea3wxAW8
_MZdApiT_
KWGMDOlihQuRBG@4
i6RqIrhfkE
9oDKdudAcI
_jYpDgY
_FtZfbg_qbr0Or@8
_3Uz1JF2@16
fGgAaiYLwaT@8

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 47KB - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8273c80c459ba85d9bb774f691f708a1

Headers

File Characteristics

Imports

oleaut32

user32

kernel32

Exports

Exports

Sections

.text Size: 8KB - Virtual size: 8KB

.data Size: 11KB - Virtual size: 11KB

.bss Size: 47KB - Virtual size: 87KB

.idata Size: 3KB - Virtual size: 3KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 8KB - Virtual size: 8KB

.data
Size: 11KB - Virtual size: 11KB

.bss
Size: 47KB - Virtual size: 87KB

.idata
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 4KB - Virtual size: 3KB