c7ccd4c2ea9e8adc2fb10e4c2e48be4b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

c7ccd4c2ea9e8adc2fb10e4c2e48be4b_JaffaCakes118
Size

137KB
MD5

c7ccd4c2ea9e8adc2fb10e4c2e48be4b
SHA1

22f08c7142b274d861a4530fdda884c5a4850ecf
SHA256

54afa946a64a57e880546abd671d0be4f0e2c9f6d39861ba3668e5dd0d47d421
SHA512

cff8ebda91fc99a897bf8742db85a0e948ec8d1f2e1d1fa976680990f02e87f1fa440db203f1ed1dc8d3b28444b26425afd18a9d77f7de34e9ccf03595220898
SSDEEP

3072:SQqNYVuIulsavhssyMAY3lzCjUeXhPnTrMpShqVc0:SQQIT7stAilr0BnToAq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c7ccd4c2ea9e8adc2fb10e4c2e48be4b_JaffaCakes118

Files

c7ccd4c2ea9e8adc2fb10e4c2e48be4b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

53074b172923e9fa4d6f14bf4497abe7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStringTypeA
FindResourceA
LocalAlloc
lstrlenA
GlobalDeleteAtom
ReadFile
FindFirstFileA
GetTickCount
GetStartupInfoA
LoadLibraryA
lstrcmpA
CompareStringA
LoadResource
ExitProcess
FindClose
WriteFile
GetThreadLocale
VirtualAlloc
LockResource
SizeofResource
GetCurrentThreadId
VirtualAllocEx

user32

SetCapture
DrawIcon
GetKeyboardLayoutNameA
SendMessageA
TranslateMDISysAccel
TranslateMessage
GetSysColor
GetTopWindow
BeginPaint
CallWindowProcA
PeekMessageA
IsRectEmpty
CreateMenu
IsDialogMessageA
DeleteMenu
SetScrollInfo
GetMenuItemInfoA
GetScrollInfo
EnableWindow
SetMenu
SetWindowPlacement
DispatchMessageA
GetMessagePos
RegisterClipboardFormatA
IsChild
ScrollWindow
FindWindowA
RemovePropA
WaitMessage
DefWindowProcA
SendMessageW
EnableScrollBar
IsDialogMessageW
SetWindowsHookExA
SetWindowLongW
EnumWindows
IsCharLowerA
IsWindowUnicode
ShowScrollBar
GetKeyboardLayoutList
GetDC
GetWindowDC
GetSysColorBrush
SetActiveWindow
SetScrollRange
ShowOwnedPopups
PtInRect
EmptyClipboard
DrawFrameControl
EnumThreadWindows
GetLastActivePopup
EndPaint
CharNextA
TrackPopupMenu
DrawEdge
GetScrollRange
UnhookWindowsHookEx
EnumChildWindows
ClientToScreen
GetMenu
GetKeyboardLayout
EqualRect
GetClassInfoA
GetDesktopWindow

oleaut32

SafeArrayUnaccessData
SysFreeString
SysStringLen
SafeArrayPtrOfIndex
SafeArrayCreate
RegisterTypeLib
SafeArrayGetUBound
OleLoadPicture
SafeArrayGetElement

Exports

Exports

FbifhbzVZr0Ak
_1WdY8pN9pZjuOL@16
gc2yDQpgorj0

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 135KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.cdata
Size: 99KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.datas
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bdata
Size: 512B - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

53074b172923e9fa4d6f14bf4497abe7

Headers

File Characteristics

Imports

kernel32

user32

oleaut32

Exports

Exports

Sections

.text Size: 12KB - Virtual size: 11KB

.data Size: 12KB - Virtual size: 135KB

.cdata Size: 99KB - Virtual size: 98KB

.datas Size: 4KB - Virtual size: 3KB

.bdata Size: 512B - Virtual size: 128B

.rsrc Size: 8KB - Virtual size: 8KB

.text
Size: 12KB - Virtual size: 11KB

.data
Size: 12KB - Virtual size: 135KB

.cdata
Size: 99KB - Virtual size: 98KB

.datas
Size: 4KB - Virtual size: 3KB

.bdata
Size: 512B - Virtual size: 128B

.rsrc
Size: 8KB - Virtual size: 8KB