b7c75571528420a83db6d9855157c4ad_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

b7c75571528420a83db6d9855157c4ad_JaffaCakes118
Size

388KB
MD5

b7c75571528420a83db6d9855157c4ad
SHA1

3a26e074cb8102c556f5817ec29139dc6147749e
SHA256

005f970ba21694d54265434734b10a8fa7bae71b6ead84525aa71a5fea2f4ad0
SHA512

cb0e4c6203a2c5f5b54d3f0746818444bcd47ec05367220d7ef58cd2294e20b9dc8d4aa88f62f4b021ed8dcfe2413c1267331b41da5572977354ce8dfd9756b1
SSDEEP

6144:+YIwwMeHiLA/oE0SwbwZCNFYYdy+bRI/+IKNPqc23H9vMTFhqLr:+Y6MeCLgL0Zbw4NF/ggycodvAe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b7c75571528420a83db6d9855157c4ad_JaffaCakes118

Files

b7c75571528420a83db6d9855157c4ad_JaffaCakes118
.exe windows:4 windows x86 arch:x86

be6897ca583c50dedea91a8b0d4b7101

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
VirtualAlloc
GetVersionExA
GetCommandLineA
GenerateConsoleCtrlEvent
SetConsoleWindowInfo
RemoveDirectoryW
GetFullPathNameA
TlsGetValue
GlobalAddAtomW
EnumResourceNamesW
WaitNamedPipeA
PeekNamedPipe
FindFirstFileW

user32

GetCursorPos
InsertMenuA
EnumClipboardFormats
SetWindowsHookExA
GetTabbedTextExtentA
DrawFocusRect
SendMessageCallbackW
CreateCursor
GetClassInfoExA
EnumWindowStationsA
InvalidateRect
LoadCursorFromFileW
ToAscii
InternalGetWindowText
CharUpperBuffW
CreateIconFromResource
GetDCEx
PeekMessageA
GetDesktopWindow
SetMessageQueue
GetClientRect
DrawIcon
GetLastActivePopup
InvertRect
SendNotifyMessageW
EnumDisplaySettingsA
CheckDlgButton
ArrangeIconicWindows
GetSystemMetrics
ReleaseDC
CreateAcceleratorTableA
GetUpdateRect
SetMenuItemInfoW
GetClassNameA
GetKeyboardLayout
EnumDisplaySettingsExW
IsCharAlphaW
DefDlgProcA
CharLowerW
SetClassLongA
DialogBoxParamW
CharUpperBuffA
SetWindowTextA
CallWindowProcA
GetThreadDesktop
DestroyIcon
GetWindowDC
RemovePropW
CreateAcceleratorTableW
SetKeyboardState
SwitchDesktop
SetWindowLongW
GetSystemMenu
wsprintfA
AppendMenuA
GetClassLongW
LoadImageW
GetKeyboardType

gdi32

CreateICA
LPtoDP
SwapBuffers
CreateBrushIndirect
CreateSolidBrush
CreateEllipticRgn
DescribePixelFormat

comdlg32

ReplaceTextA

advapi32

SetSecurityDescriptorOwner
RegisterServiceCtrlHandlerW

shell32

SHGetPathFromIDListA
SHChangeNotify
SHGetDesktopFolder
Shell_NotifyIconW
DragFinish

ole32

ReadClassStg

oleaut32

SafeArrayGetElement
SafeArrayRedim
SysAllocStringLen
LoadTypeLibEx
SafeArrayPutElement
SysStringLen

comctl32

ImageList_SetIconSize
ImageList_DragEnter
ImageList_Destroy
ImageList_ReplaceIcon

shlwapi

PathIsRelativeA
StrRStrIW
SHRegQueryUSValueW
ChrCmpIW
StrCmpNA
PathIsUNCServerW
PathRemoveArgsW
PathRenameExtensionW
SHRegWriteUSValueW
PathIsPrefixW
PathRelativePathToW

Sections

.text
Size: 336KB - Virtual size: 333KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 44KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

be6897ca583c50dedea91a8b0d4b7101

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

comctl32

shlwapi

Sections

.text Size: 336KB - Virtual size: 333KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 44KB - Virtual size: 42KB

.text
Size: 336KB - Virtual size: 333KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 44KB - Virtual size: 42KB