d21d6f7e0d27f4721169b99b888677bc_JaffaCakes118

General

Target

d21d6f7e0d27f4721169b99b888677bc_JaffaCakes118
Size

59KB
MD5

d21d6f7e0d27f4721169b99b888677bc
SHA1

681cbd01513dd8a3bdc4c03ffef9918c86baf3b4
SHA256

7248c3aad4d0c2ac8f74aa6a008feb00f0f79662aee5a11a17c5ae8190b468f0
SHA512

3ea20df762e16c16be01bde22d91a70be8c424ec99bb0fcbfa3b1e36e5d4635c478585a29d12fbc9052b1ff2dc0d3ad90eefe235fbd5dd0d9e9f6c5e13aac82f
SSDEEP

1536:eLfLVj+xxyvr182ELVRT9+LXzBr6/5Hdg8c+MzcMu:yfLl+xBdZB9kYrceM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d21d6f7e0d27f4721169b99b888677bc_JaffaCakes118

Files

d21d6f7e0d27f4721169b99b888677bc_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a124e5622bcac40e5211067fcb8d5de3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CopyIcon
GetWindowTextA
GetWindowTextLengthA
CopyRect
DrawIconEx
LoadCursorA
CreateIcon
DialogBoxParamW
CloseWindow
IsWindow
DrawTextA
GetMenu
EndDialog
DialogBoxParamA
LoadMenuA
IsMenu
GetFocus
GetCursor
InsertMenuA
CopyImage
GetDC

kernel32

GetACP
LCMapStringA
WriteFile
GetCPInfo
GetStringTypeA
lstrcpynA
MultiByteToWideChar
lstrcatA
GetStringTypeW
GetFileType
GetStdHandle
GetCurrentProcess
GetVersion
GetCommandLineA
LCMapStringW
SetHandleCount
SetFilePointer
lstrcpynW
CreateFileA
GetModuleFileNameA
GetOEMCP
lstrcpyA

comctl32

ImageList_GetIcon
ImageList_Destroy
ImageList_LoadImageA
DrawStatusTextW
ImageList_LoadImageW
ImageList_Create
ImageList_DragEnter
ImageList_GetIconSize
CreateToolbar
DrawStatusText

advapi32

RegDeleteValueA
RegCreateKeyExW
RegQueryValueW
RegCreateKeyA
RegQueryValueExW
RegDeleteValueW
RegOpenKeyA
RegCreateKeyExA
RegEnumValueW
RegDeleteKeyW
RegEnumKeyW
RegEnumKeyA
RegSetValueA

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 50KB - Virtual size: 17.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a124e5622bcac40e5211067fcb8d5de3

Headers

File Characteristics

Imports

user32

kernel32

comctl32

advapi32

Sections

.text Size: 3KB - Virtual size: 2KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 50KB - Virtual size: 17.2MB

.rsrc Size: 2KB - Virtual size: 4KB

.text
Size: 3KB - Virtual size: 2KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 50KB - Virtual size: 17.2MB

.rsrc
Size: 2KB - Virtual size: 4KB