b74d512be056a0eef054b233cc736f3c_JaffaCakes118

General

Target

b74d512be056a0eef054b233cc736f3c_JaffaCakes118
Size

29KB
MD5

b74d512be056a0eef054b233cc736f3c
SHA1

0f3959eddd46eaba911a968c305df367fc5561f1
SHA256

f3ffaa7692115fe7665cef24f06219b69717e8fdf44fa77cf63a1ecd0f94d831
SHA512

0b562ba7fefc730548e882ae8e49ec81f649f9fa8730031641ace6bc9e1a1387d1d997f6f77993e501065f71f91393e97b97126265d98b0635308f38b5b4968f
SSDEEP

768:CW9ep3ZxNi4gEM9c+dR6o/oOiKufc3iWoFzjOUnehcR:FAtZzDg96B/2iWotjOh2R

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b74d512be056a0eef054b233cc736f3c_JaffaCakes118

Files

b74d512be056a0eef054b233cc736f3c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

103ec1e8df97868301c42d8bee9912ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetUnhandledExceptionFilter
lstrcmpW
GetCurrentThreadId
QueryPerformanceCounter
lstrcmpA
lstrcatA
lstrcpy
FreeLibrary
GetModuleFileNameA
lstrcpyW
GetProcessHeap
lstrcpynA
WaitForSingleObject
lstrcpynW
lstrcpyn
LoadLibraryW
lstrcat
VirtualProtect
MultiByteToWideChar
GetCurrentProcess

user32

UpdateLayeredWindow
GetMessageW
SendMessageW
RegisterWindowMessageW
GetWindowTextLengthW
CheckRadioButton
DestroyWindow
LoadMenuA
CharUpperA
GetActiveWindow
UpdateWindow
GetWindowRect
GetKeyState
DefWindowProcA
GetSystemMenu
LoadCursorW
LoadStringW
IsWindowEnabled
EnableWindow
RegisterWindowMessageA
GetForegroundWindow
LoadImageW
CreateWindowExA
ReleaseDC
RegisterClassExW
GetWindowLongA
MoveWindow
GetWindowTextW
GetCapture
LoadIconW
GetWindowTextA
DefWindowProcW
ShowWindow
ChangeMenuW
GetDlgItem

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 980B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

103ec1e8df97868301c42d8bee9912ce

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 11KB - Virtual size: 11KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 14KB - Virtual size: 13KB

.rsrc Size: 1024B - Virtual size: 980B

.text
Size: 11KB - Virtual size: 11KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 14KB - Virtual size: 13KB

.rsrc
Size: 1024B - Virtual size: 980B