bb276aec78a606792a402da64389aa47_JaffaCakes118

General

Target

bb276aec78a606792a402da64389aa47_JaffaCakes118
Size

30KB
MD5

bb276aec78a606792a402da64389aa47
SHA1

8e1ae14707236ad7a18609ffa391973f5f7fd8b3
SHA256

343ba97df021586fc109bc2b45b01443cb7fad41b7e3b48403df8a6781a1c9c4
SHA512

e039d7bcbb673a5923406dad00d0f797cf616abfea4edfaf363246b42f99139ca1fd709f0178e84fe1fbec9ddeaa394f30d5bdf9c956fe1cc34d0070b08bab67
SSDEEP

384:qTLw2BneFSHpePbkrbR3i7cd6Vn2j0G956m9ZyQLgNo5NsKzpc/xhRsI7tbkm72:UVeFKFbR3KckNGT9Zydo5u4pc/q8n72

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bb276aec78a606792a402da64389aa47_JaffaCakes118

Files

bb276aec78a606792a402da64389aa47_JaffaCakes118
.exe windows:4 windows x86 arch:x86

134522590a3f972c248a0148f0bf2f39

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
lstrcatA
GetCurrentProcessId
QueryPerformanceFrequency
FreeLibrary
lstrcat
GetACP
lstrcmpA
WaitForSingleObject
VirtualAlloc
GetTickCount
VirtualProtect
QueryPerformanceCounter
MultiByteToWideChar
lstrlenW
GetModuleHandleW
SetEvent
GetCommandLineW

user32

GetSystemMenu
PostMessageW
GetParent
DestroyWindow
IsWindowEnabled
SetCapture
ChangeMenuW
RegisterWindowMessageA
GetWindowTextLengthW
MoveWindow
ShowWindow
GetMenu
DefWindowProcA
GetDC
CheckRadioButton
CheckMenuItem
GetCapture
LoadMenuW
GetWindowLongA
GetWindowTextA
CharUpperW
LoadIconW
LoadCursorA
CharUpperA
GetWindowLongW
LoadMenuA
RegisterClassExW
LoadStringA
LoadImageW
UpdateWindow
GetSystemMetrics
LoadCursorW
SetTimer
GetKeyState
CreateWindowExA
GetMessageW
RegisterWindowMessageW
LoadIconA
LoadImageA
GetWindowTextLengthA
GetActiveWindow
LoadStringW
GetDlgItem

gdi32

ResetDCW
CreatePatternBrush
SetPixel

advapi32

RegEnumKeyExA
RegCreateKeyA
RegEnumValueA

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

134522590a3f972c248a0148f0bf2f39

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 11KB - Virtual size: 11KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 14KB - Virtual size: 14KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 11KB - Virtual size: 11KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 14KB - Virtual size: 14KB

.rsrc
Size: 1KB - Virtual size: 1KB