d39f0e3393bb6e73cb7ecdf98eae828d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

d39f0e3393bb6e73cb7ecdf98eae828d_JaffaCakes118
Size

102KB
MD5

d39f0e3393bb6e73cb7ecdf98eae828d
SHA1

c407a45f8cfba344afc9c70be758ae7fd0aeec6a
SHA256

c1d63cc02f657c34308d1222f78b821b3a7968f4f04f9e7e2fbc10fc5324b30e
SHA512

bf017a7489d1a58b4ec852426abb62e3f9822d6269e62218a5c1e6afc4a18bbc8cf805a7349bcd962aaf0ebb8db5f11fe5f11c3b0e14d200341ec2ecc68a0c8d
SSDEEP

3072:h9rqIoHy7a7qsLOhsMWOpht4Jv4Vurj6dGDc:h1nVtsLOzVyQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d39f0e3393bb6e73cb7ecdf98eae828d_JaffaCakes118

Files

d39f0e3393bb6e73cb7ecdf98eae828d_JaffaCakes118
.exe windows:1 windows x86 arch:x86

9e88691a5f1bca3ca01f4e64c4360154

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
GetCurrencyFormatA
GetDiskFreeSpaceA
GetExitCodeProcess
GetFileSize
GetLastError
GetModuleHandleA
GetProcAddress
GetTickCount
LoadLibraryA
SearchPathA
SuspendThread
SwitchToFiber
SwitchToThread
VirtualAlloc
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA
GetLocaleInfoW
GetFileAttributesExW
GetEnvironmentStringsW
GetCalendarInfoW
EnumSystemLocalesW
CopyFileExW

gdi32

CreateBrushIndirect
DeleteObject
EndDoc
FillPath
GetDeviceCaps
SetBkColor
SetTextColor
StartDocA

user32

CheckDlgButton
ClientToScreen
EnableMenuItem
FindWindowExA
GetCursorPos
GetDlgCtrlID
GetMenu
GetSysColor
InvalidateRect
IsDlgButtonChecked
KillTimer
LoadAcceleratorsA
LoadCursorA
MonitorFromRect
MoveWindow
PeekMessageA
SetCaretPos
SetWindowPos
ShowCaret
TrackPopupMenuEx

advapi32

RegEnumKeyA
RegLoadKeyA
SetTokenInformation

Sections

.text
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

9e88691a5f1bca3ca01f4e64c4360154

Headers

File Characteristics

Imports

kernel32

gdi32

user32

advapi32

Sections

.text Size: 84KB - Virtual size: 84KB

.idata Size: 4KB - Virtual size: 4KB

.data Size: 4KB - Virtual size: 4KB

.rsrc Size: 4KB - Virtual size: 4KB

.aspack Size: 5KB - Virtual size: 8KB

.adata Size: - Virtual size: 4KB

.text
Size: 84KB - Virtual size: 84KB

.idata
Size: 4KB - Virtual size: 4KB

.data
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 4KB - Virtual size: 4KB

.aspack
Size: 5KB - Virtual size: 8KB

.adata
Size: - Virtual size: 4KB