bc7c207818aef55437cc42d2bd608540_JaffaCakes118

General

Target

bc7c207818aef55437cc42d2bd608540_JaffaCakes118
Size

60KB
MD5

bc7c207818aef55437cc42d2bd608540
SHA1

96a6767b2bcc2ee3333e087ad91c6d7615b448a6
SHA256

4afda4ccea21be0d98fa20aba714869a7e2fc77b166b840caad4dcb26d8425d5
SHA512

9bc9fe32730e710efb0c9b128324c16a45ea9dcf09ee9179e3c9f7aec554a0f7d379bbbd9a7c9d189dee31618da5c39c0cab127d705fc54c6d7eab56ad6326a4
SSDEEP

1536:dK/iWqegZxC5ORqPy5goLBSG1FjWDhyXDolTn:k/RgZxDRoHG1NWD4XDWTn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bc7c207818aef55437cc42d2bd608540_JaffaCakes118

Files

bc7c207818aef55437cc42d2bd608540_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ee0c11b89afd9a95f229395ca1e02674

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
GetFileAttributesExW
WideCharToMultiByte
GetSystemTime
WritePrivateProfileStringW
SetLastError
WriteFile
FreeResource
FindResourceW
InterlockedIncrement
CreateProcessW
GetFileAttributesW
MulDiv
GetModuleFileNameW
FindFirstChangeNotificationW
GetCurrentThreadId
CreateEventW
GetProcAddress
GlobalUnlock
LoadLibraryA
SetEvent
GetFileSize
MultiByteToWideChar
WaitForSingleObject
GetVersion

user32

GetWindowTextW
SendMessageW
GetMessageW
GetSysColor
GetWindowDC
AppendMenuW
IsWindow
RegisterWindowMessageW
SendDlgItemMessageW
WindowFromPoint
SetCursorPos
PostMessageW
SetLayeredWindowAttributes
GetWindowRect
GetSystemMetrics
RegisterHotKey
FillRect
DrawTextW
SystemParametersInfoW
TrackPopupMenu
VkKeyScanW
SetForegroundWindow
LoadIconW

gdi32

LineTo
SetMapMode
DPtoLP
CreateSolidBrush
CreateICW
BitBlt
GetMapMode
SetDIBits

advapi32

GetUserNameW
InitializeSecurityDescriptor
StartServiceW
RegCloseKey
SetSecurityDescriptorDacl
RegDeleteValueW

Sections

.text
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

ee0c11b89afd9a95f229395ca1e02674

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 48KB - Virtual size: 47KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 1KB

.text
Size: 48KB - Virtual size: 47KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 1KB