b4072b9a5f3fecbdd1ddf710ed860ce0_JaffaCakes118

General

Target

b4072b9a5f3fecbdd1ddf710ed860ce0_JaffaCakes118
Size

56KB
MD5

b4072b9a5f3fecbdd1ddf710ed860ce0
SHA1

0ac0d8bb866dd3055595712f466677baf66dc4a9
SHA256

03d3a2f51ce71e421d87529531ace3ef4cf5556d093e1479ac41cc730bd013bd
SHA512

f0607078eb71024d9e06ee96ccb64add3a30482c8ac5aea110aa54c9b0705fd3159d93db05aa83e893c7881f6b12cc7b6686e815a0de8ba2b9564a9326bb489f
SSDEEP

768:1ABF9ayHZIh6oPBstlJxhqk39DPSkM7j2TGBjq+Um:Gv9t1oqt1hn39DKkM7Kc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b4072b9a5f3fecbdd1ddf710ed860ce0_JaffaCakes118

Files

b4072b9a5f3fecbdd1ddf710ed860ce0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

466e81c949534d0d77529f98014f843a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenA
GlobalAlloc
GlobalUnlock
GlobalLock
lstrcpyA
GetModuleHandleA
UnhandledExceptionFilter
GetModuleFileNameA
GetStringTypeA
LCMapStringW
GetStringTypeW
MultiByteToWideChar
LoadLibraryA
LCMapStringA
HeapReAlloc
GetProcAddress
HeapAlloc
GetOEMCP
VirtualAlloc
GetCPInfo
WriteFile
GetACP
HeapFree
VirtualFree
RtlUnwind
HeapDestroy
GetFileType
GetTickCount
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
WideCharToMultiByte
HeapCreate
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle

user32

SetDlgItemTextA
CloseClipboard
wsprintfA
GetDlgItemTextA
OpenClipboard
SetClipboardData
EmptyClipboard
DialogBoxParamA
SetWindowPos
SendDlgItemMessageA
SetWindowTextA
EndDialog
GetClientRect
LoadBitmapA
BeginPaint
ReleaseCapture
FrameRect
EndPaint
GetWindowRect
GetCursorPos
SetCapture

gdi32

SetTextColor
GetObjectA
GetStockObject
CreateFontIndirectA
SetBkColor
SetBkMode
CreateSolidBrush

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

466e81c949534d0d77529f98014f843a

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 12KB - Virtual size: 11KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 2KB

.rsrc Size: 32KB - Virtual size: 31KB

.text
Size: 12KB - Virtual size: 11KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 32KB - Virtual size: 31KB