b7e5ff6795bae5f8dfd40747b0a3e065_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b7e5ff6795bae5f8dfd40747b0a3e065_JaffaCakes118
Size

97KB
MD5

b7e5ff6795bae5f8dfd40747b0a3e065
SHA1

3669d4d4cffdb0e7fe62eeef7950498046cf14c8
SHA256

abe932a2eec700d7251ea612a8df5c6bb69951e06c6a098ab6613080d37fedde
SHA512

08d9747004e783685305fd25ce4b6616cc616dbe01d8a8bc73bdd4efe2f8acde3046c9bd645f7b7953c87ea0d56842d6c4a91b8c6547f9a9970bce94d305b003
SSDEEP

1536:gxOLZOoxLKm0sA9nar+Ge4JA+Nxz4Xqcsv4Vu:uO9OqKbsA9naaGvA+fz4acsvF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b7e5ff6795bae5f8dfd40747b0a3e065_JaffaCakes118

Files

b7e5ff6795bae5f8dfd40747b0a3e065_JaffaCakes118
.exe windows:4 windows x86 arch:x86

559c358d796e32f67184146750c693eb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MoveFileExA
SetHandleCount
ExitProcess
LocalFree
IsBadHugeReadPtr
WriteFile
WideCharToMultiByte
VirtualAlloc
GetCommandLineA
MoveFileA
HeapDestroy
ExitThread
lstrcatA
MulDiv
GetLastError
SizeofResource
SetThreadLocale
LocalReAlloc
lstrcpynA
VirtualAllocEx
lstrcmpiA
VirtualFree
ResetEvent
lstrcmpA
GetModuleHandleA
GetCommandLineW
SetFilePointer
LocalAlloc
GetVersionExA
GetACP
SetEndOfFile
SetErrorMode
WaitForSingleObject
lstrlenA
LoadLibraryA
GetProcAddress

user32

GetMenuStringA
IsDialogMessageW
GetParent
GetSysColorBrush
InsertMenuA
GetWindowRect
GetPropA
GetLastActivePopup
GetIconInfo
GetWindowDC
GetClipboardData
GetKeyState
GetMenu
GetSubMenu
GetForegroundWindow
IsZoomed
GetMenuItemID
GetKeyNameTextA
GetClassNameA
GetFocus
GetWindowTextA
GetSystemMenu
InflateRect

gdi32

CreateBitmap
BitBlt
CopyEnhMetaFileA

Sections

.RES74
Size: 69KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RES60
Size: 152KB - Virtual size: 151KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RES61
Size: 1024B - Virtual size: 615B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.RES27
Size: 1024B - Virtual size: 883B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RES84
Size: 1024B - Virtual size: 977B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RES20
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RES38
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RES25
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RES93
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

559c358d796e32f67184146750c693eb

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.RES74 Size: 69KB - Virtual size: 68KB

.data Size: 3KB - Virtual size: 2KB

.RES60 Size: 152KB - Virtual size: 151KB

.RES61 Size: 1024B - Virtual size: 615B

.RES27 Size: 1024B - Virtual size: 883B

.RES84 Size: 1024B - Virtual size: 977B

.RES20 Size: 1KB - Virtual size: 1KB

.RES38 Size: 2KB - Virtual size: 1KB

.RES25 Size: 1KB - Virtual size: 1KB

.RES93 Size: 2KB - Virtual size: 2KB

.rsrc Size: 2KB - Virtual size: 2KB

.RES74
Size: 69KB - Virtual size: 68KB

.data
Size: 3KB - Virtual size: 2KB

.RES60
Size: 152KB - Virtual size: 151KB

.RES61
Size: 1024B - Virtual size: 615B

.RES27
Size: 1024B - Virtual size: 883B

.RES84
Size: 1024B - Virtual size: 977B

.RES20
Size: 1KB - Virtual size: 1KB

.RES38
Size: 2KB - Virtual size: 1KB

.RES25
Size: 1KB - Virtual size: 1KB

.RES93
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 2KB - Virtual size: 2KB