bdbe11c7eea2ef918fde846d1ae7a31e_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

bdbe11c7eea2ef918fde846d1ae7a31e_JaffaCakes118
Size

2.2MB
MD5

bdbe11c7eea2ef918fde846d1ae7a31e
SHA1

c9c247d8c086f08a470c8d972a6941df6dd8db82
SHA256

1d5c0cf93e8cf44b8985ffe6c8306ba82089394b1cd78099a51b8d5e4444e073
SHA512

2ebefbef146930ffc0cd92909ae94d1dbf288c88c5d837182261f01a77f6ffcedac93858a3b4b73bd69c27dc66f19e26e7d23633bafce53c377998f611246a40
SSDEEP

49152:LhqunsrCnOUHBpCda+kPTHZ3i5VzeyJS4u2DMX01NumGH:LhqYHTCdbm3iJ1nDMXGWH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bdbe11c7eea2ef918fde846d1ae7a31e_JaffaCakes118

Files

bdbe11c7eea2ef918fde846d1ae7a31e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6f6d79271d62ff701f8c5e4789cc9e72

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

msacm32

acmFormatTagEnumA

winmm

mmioWrite

comctl32

ImageList_DrawEx

user32

GetActiveWindow

gdi32

StretchDIBits

advapi32

RegDeleteValueA

shell32

SHGetFileInfoA

ole32

CoTaskMemAlloc

oleaut32

SysStringLen

uitreevcph

ord295

dspcore

?Interleave@@YAXPAPBMHHPAM@Z

cdrvcph

CDR_GriTerminate

keyboardhandlervcph

SetKeyEventCallback

zipvcph

?HasAbsolutePaths@TZipper@@QBE_NXZ

imagingvcph

??1TImage@@UAE@XZ

uitabvcph

SftTabs_IsTabControl

uicombovcph

_SftBox_SetItemBitmap@12

uiframevcph

?SetItemData@TreeView@@QAEXPAU_TREEITEM@@J@Z

version

GetFileVersionInfoSizeA

commonvcph

?LockAccess@TMultithreadedObject@@QBEXXZ

databasevcph

?UpdateRecord@TDatabase@@QAEXPAIPBVTBaseRecord@@@Z

msvcr80

__set_app_type

ter32

ord175

avifil32

AVIStreamEndStreaming

cda

??0CMapDrive@@QAE@HH@Z

wsock32

gethostbyname

Sections

.text
Size: 2.1MB - Virtual size: 7.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

6f6d79271d62ff701f8c5e4789cc9e72

Headers

File Characteristics

Imports

kernel32

msacm32

winmm

comctl32

user32

gdi32

advapi32

shell32

ole32

oleaut32

uitreevcph

dspcore

cdrvcph

keyboardhandlervcph

zipvcph

imagingvcph

uitabvcph

uicombovcph

uiframevcph

version

commonvcph

databasevcph

msvcr80

ter32

avifil32

cda

wsock32

Sections

.text Size: 2.1MB - Virtual size: 7.0MB

.rsrc Size: 48KB - Virtual size: 52KB

.text
Size: 2.1MB - Virtual size: 7.0MB

.rsrc
Size: 48KB - Virtual size: 52KB