bb7c6d59f19c26166345d2fda837e23b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

bb7c6d59f19c26166345d2fda837e23b_JaffaCakes118
Size

175KB
MD5

bb7c6d59f19c26166345d2fda837e23b
SHA1

0e23e3fdfaa1b595ae919a34a363c59e6e8b13a4
SHA256

b98abc53acbdc237debee64e19a71d222c5490730181caf970ac1542d474d644
SHA512

78e64de321535af2c6f3e9ce777506d5408aa18b46f9c6a05634e5b623e287e6cf94953dcdd21877b7fbd8dea1eec37555c824794b15f390858daa7be65ceb86
SSDEEP

3072:LvKSIDFKq51MpUR6vwPH2c3C9X74hnHZj1r60gv:DKlHp6vdZ725p0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bb7c6d59f19c26166345d2fda837e23b_JaffaCakes118

Files

bb7c6d59f19c26166345d2fda837e23b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

579ebf19ae5be5446a8901715bad74c7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCreateKeyA
RegQueryValueExA
RegEnumKeyA
RegLoadKeyA

gdi32

SelectPalette
SetPixel
RestoreDC
CreateBitmap
CreateCompatibleDC
SetTextColor
SelectObject
CreateFontIndirectA
GetDCOrgEx
GetDIBColorTable

shlwapi

SHGetValueA
SHDeleteValueA
SHStrDupA

user32

FindWindowA
InsertMenuA
GetMenuItemCount
GetCapture
GetSysColor
WindowFromPoint
GetTopWindow
GetScrollInfo
CreatePopupMenu
DrawAnimatedRects
GetMenuItemInfoA
SetClassLongA
UpdateWindow
GetCursor
TranslateMDISysAccel
SetWindowPlacement
LoadStringA
FrameRect
InflateRect
ReleaseDC
DefMDIChildProcA
GetSubMenu
UnhookWindowsHookEx
OemToCharA
GetDesktopWindow
MsgWaitForMultipleObjects
EnumChildWindows
GetFocus
WaitMessage
DefWindowProcA
TrackPopupMenu
IsWindowUnicode
SetScrollInfo
IsWindowVisible
DispatchMessageW

ole32

CLSIDFromProgID
CoCreateGuid
CoGetObjectContext
StgCreateDocfileOnILockBytes
CoGetMalloc

version

GetFileVersionInfoA
VerQueryValueA
VerInstallFileA

kernel32

SetEndOfFile
GetOEMCP
GlobalAddAtomA
FindFirstFileA
GetProcAddress
GetModuleHandleA
GetLocaleInfoA
GetModuleFileNameA
VirtualAlloc
GetThreadLocale
lstrcmpiA
GetVersionExA
ExitProcess
VirtualAllocEx
GlobalAlloc
GetCurrentThread
GetLastError

shell32

SHFileOperationA
DragQueryFileA

Sections

CODE
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 140KB - Virtual size: 207KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

DATA
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

579ebf19ae5be5446a8901715bad74c7

Headers

File Characteristics

Imports

advapi32

gdi32

shlwapi

user32

ole32

version

kernel32

shell32

Sections

CODE Size: 29KB - Virtual size: 29KB

.data Size: 140KB - Virtual size: 207KB

DATA Size: 4KB - Virtual size: 4KB

CODE
Size: 29KB - Virtual size: 29KB

.data
Size: 140KB - Virtual size: 207KB

DATA
Size: 4KB - Virtual size: 4KB