b2b6649be4b03aa2c298bdb99522d68a_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b2b6649be4b03aa2c298bdb99522d68a_JaffaCakes118
Size

204KB
MD5

b2b6649be4b03aa2c298bdb99522d68a
SHA1

dfb04f9b340f8524d0c60529ce9b502fd718eb52
SHA256

68dbc981a5fd3af23b44d5e9652a2f02e786fe5f1285a3170d71f3692e31c589
SHA512

9b0df20f05c98773bd2e49f659ee2ad650cee59d06636a896c976cd14ac798d1d3fff1694db0133cdef1cf07767dd4ef5c598bc42cf82cbab69ff024d56e7945
SSDEEP

3072:EAU4g4RABYC7sk5tybKB10EEM5tZjY1RkIkaNBfjOLnypmfK8Xlo:EAzdA6kK+B10M5301S7YqTyE1l

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b2b6649be4b03aa2c298bdb99522d68a_JaffaCakes118

Files

b2b6649be4b03aa2c298bdb99522d68a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a50e03a09fad54ec938e015ca3f98bdc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

user32

MoveWindow
GetScrollInfo
EqualRect
CheckMenuItem
UnhookWindowsHookEx
PostQuitMessage
GetMessagePos
DrawEdge
GetWindowThreadProcessId
SendMessageA
ShowScrollBar
GetKeyboardLayout
GetWindowRect
DestroyCursor
SetScrollInfo
ReleaseDC
GetMenu
GetClipboardData
PeekMessageA
SetScrollRange
UnregisterClassA
GetDC
SetWindowTextA
SetCapture
DrawTextA
IsWindowVisible
RegisterClassA
CreateIcon
SetMenu
GetMenuItemInfoA
PtInRect
GetKeyState
DrawIcon
wsprintfA
GetMenuItemCount
PeekMessageW
SetRect
DeleteMenu
IsDialogMessageA
GetClassNameA
CloseClipboard
ScreenToClient
TranslateMDISysAccel
SetForegroundWindow
DestroyMenu
GetSubMenu
GetTopWindow
GetMenuItemID
IsZoomed
GetWindowLongW
DispatchMessageW
GetDCEx
LoadKeyboardLayoutA
SetClipboardData
GetParent
RegisterWindowMessageA
ChildWindowFromPoint
SendMessageW
GetWindowTextA
SetParent
IsChild
OemToCharA
MapVirtualKeyA
EnumChildWindows
DrawMenuBar
CharNextW
SetScrollPos
TrackPopupMenu
SetFocus
LoadCursorA
GetLastActivePopup
CallWindowProcA
RedrawWindow

gdi32

CreateCompatibleBitmap
GetDIBColorTable
CreateBitmap
GetObjectA
GetDIBits
GetCurrentPositionEx
SetPixel
CreateCompatibleDC
SetBkColor
CopyEnhMetaFileA

kernel32

VirtualAlloc
GetACP
GetCommandLineW
GetLastError
ExitThread
IsBadReadPtr
LocalAlloc
LoadLibraryExA
GetModuleHandleA
VirtualAllocEx
GetCommandLineA
ExitProcess
LoadLibraryA
GetProcAddress

version

VerFindFileA
VerQueryValueA

shlwapi

PathGetCharTypeA
SHGetValueA
SHStrDupA
SHEnumValueA
SHDeleteValueA
PathIsDirectoryA
PathFileExistsA
SHSetValueA

Sections

.text
Size: 69KB - Virtual size: 69KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 404B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RSRC7
Size: 512B - Virtual size: 146B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RSRC3
Size: 124KB - Virtual size: 123KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RSRC9
Size: 1024B - Virtual size: 540B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RSRC5
Size: 512B - Virtual size: 108B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.RSRC2
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RSRC8
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 992B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a50e03a09fad54ec938e015ca3f98bdc

Headers

File Characteristics

Imports

user32

gdi32

kernel32

version

shlwapi

Sections

.text Size: 69KB - Virtual size: 69KB

DATA Size: 512B - Virtual size: 404B

.RSRC7 Size: 512B - Virtual size: 146B

.RSRC3 Size: 124KB - Virtual size: 123KB

.RSRC9 Size: 1024B - Virtual size: 540B

.RSRC5 Size: 512B - Virtual size: 108B

.RSRC2 Size: 1KB - Virtual size: 1KB

.RSRC8 Size: 4KB - Virtual size: 4KB

.rsrc Size: 1024B - Virtual size: 992B

.text
Size: 69KB - Virtual size: 69KB

DATA
Size: 512B - Virtual size: 404B

.RSRC7
Size: 512B - Virtual size: 146B

.RSRC3
Size: 124KB - Virtual size: 123KB

.RSRC9
Size: 1024B - Virtual size: 540B

.RSRC5
Size: 512B - Virtual size: 108B

.RSRC2
Size: 1KB - Virtual size: 1KB

.RSRC8
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 1024B - Virtual size: 992B