b5abc729de5ccde59e6fefc180481d77_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b5abc729de5ccde59e6fefc180481d77_JaffaCakes118
Size

65KB
MD5

b5abc729de5ccde59e6fefc180481d77
SHA1

a6e132ac17aeb4a89da2c459dafa2604483dd95e
SHA256

de0b445de55465a1206ef86b464b4119a5cf04dd242b4cc5d0a35d2eb34e3a55
SHA512

e5d65de7c1bf9c93ef9f6479b816efd7e1ca1282d7e691b14220cfff1608fbb9010ee53af97d36680a7a455697d0873260f711c89930ff3155b9acfe7817f21c
SSDEEP

768:cPTCNaKlaXxKt1405UmQhy6q4gMPr0cgLFJ5ND9nuI9b+xXH98n5y5NITX6j:cLCNa9hKt60amG0rHduo8H9Ys5NITXi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b5abc729de5ccde59e6fefc180481d77_JaffaCakes118

Files

b5abc729de5ccde59e6fefc180481d77_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0e215e2cf32d95fa624e7e8a01e5cebe

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentDirectoryA
Sleep
GetSystemTime
SetSystemTime
MultiByteToWideChar
GetVersion
GetModuleHandleA
LoadLibraryA
GetStartupInfoA
SetFilePointer
GetLastError
GetProcAddress
HeapCreate
WriteFile
FlushFileBuffers
ReadFile
GetCommandLineA
GetStdHandle
GetFileType
SetHandleCount
GetOEMCP
WideCharToMultiByte
GetACP
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetStringTypeW
GetStringTypeA
SetStdHandle
CloseHandle
ExitProcess
GetCPInfo
GetEnvironmentStrings
GetModuleFileNameA
HeapFree
HeapAlloc
RtlUnwind
UnhandledExceptionFilter
FreeEnvironmentStringsA

user32

GetDesktopWindow
SetWindowTextA
GetWindowTextA
GetWindowTextLengthA
IsDlgButtonChecked
GetDlgItemInt
SendMessageA
MessageBeep
DialogBoxParamA
GetDlgItem
EndDialog
MessageBoxA
SendDlgItemMessageA

comdlg32

GetOpenFileNameA
CommDlgExtendedError

advapi32

RegOpenKeyA
RegCloseKey
RegQueryValueExA

shell32

DragQueryFileA
ShellExecuteA
DragAcceptFiles
DragFinish

ole32

CoUninitialize
CoCreateInstance
CoInitialize

Sections

.text
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 29KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

0e215e2cf32d95fa624e7e8a01e5cebe

Headers

File Characteristics

Imports

kernel32

user32

comdlg32

advapi32

shell32

ole32

Sections

.text Size: 22KB - Virtual size: 22KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 5KB - Virtual size: 9KB

.idata Size: 2KB - Virtual size: 1KB

.rsrc Size: 3KB - Virtual size: 3KB

.reloc Size: 29KB - Virtual size: 30KB

.text
Size: 22KB - Virtual size: 22KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 5KB - Virtual size: 9KB

.idata
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 3KB - Virtual size: 3KB

.reloc
Size: 29KB - Virtual size: 30KB