dac751256cd01c170a2eee9f6d815816_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

dac751256cd01c170a2eee9f6d815816_JaffaCakes118
Size

35KB
MD5

dac751256cd01c170a2eee9f6d815816
SHA1

e49fcc7eb92f22df459e733df41145e0329f320b
SHA256

a2fa90dfa400326c0ffad52889deb7446c95dc7c07db33ee068ab1163d5fa86e
SHA512

3b1efa4afbaea4f0caa2b5dd8a7c19b99249092d3f00981e836b5260dad6e046cd168d6fdeb6f25f50b566354513b1a3109339077c58b9ca9fc12ef4c6817820
SSDEEP

384:kIvUpjCnA1JpUcdxLB7FPUqJF3pAgEVKvoSYmTIfOrfre6hjzczPRIJp:kUUVCnjqXUqJFZAgE/NiIfOTrvRAJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dac751256cd01c170a2eee9f6d815816_JaffaCakes118

Files

dac751256cd01c170a2eee9f6d815816_JaffaCakes118
.exe windows:4 windows x86 arch:x86

86010a2daa6e6bdf3872a3d6e24c963a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
CreateFileA
SetFilePointer
HeapAlloc
CloseHandle
GetTempPathA
GetProcessHeap
WriteFile
ReadFile
lstrcatA
SetLastError
GetProcAddress
FreeLibrary
CreateThread
lstrcpyA
HeapFree
GetLastError

user32

RegisterWindowMessageA
EndMenu
GetSysColorBrush
SetProcessWindowStation
UpdateWindow
ShowWindow
RemovePropW
CountClipboardFormats
SetTimer
LoadAcceleratorsA
SendMessageW
DrawTextExW
LoadStringW
CreateAcceleratorTableW
CloseWindow
GetCursorPos
GetClientRect
GetUserObjectInformationA
DefWindowProcA
GetMessageA
EndDialog
OpenDesktopW
OemToCharW
IsWindowVisible
GetSystemMetrics
IsWindowUnicode
GetProcessWindowStation
SendNotifyMessageW
TranslateAcceleratorA
GetClipCursor
DestroyWindow
IsMenu
GetClassNameW
CreateWindowExA
LoadIconA
CreateDesktopW
GetClassWord
CreateDesktopA
EndPaint
AdjustWindowRectEx
GetParent
PostThreadMessageW
IsClipboardFormatAvailable
GetWindowLongW
CloseWindowStation
LoadStringA
DispatchMessageA
GetInputState
GetKeyboardType
GetLastActivePopup
GetWindow
IsZoomed
FlashWindow
GetWindowTextA
GetWindowThreadProcessId
ActivateKeyboardLayout
GetGUIThreadInfo
PostMessageA
GetMessageExtraInfo
GetMessageTime
FindWindowExW
IsChild
GetClipboardOwner
GetForegroundWindow
GetThreadDesktop
GetKeyboardLayoutList
IsWindow
TranslateMessage
GetWindowDC
RegisterHotKey
SetThreadDesktop
GetDoubleClickTime
PostQuitMessage
GetClassInfoA
DialogBoxParamA
SwitchDesktop
BeginPaint
RegisterClassExA
LoadCursorA
LoadBitmapW
FindWindowA
SystemParametersInfoA

shell32

SHGetFolderPathA

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 644B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

86010a2daa6e6bdf3872a3d6e24c963a

Headers

File Characteristics

Imports

kernel32

user32

shell32

Sections

.text Size: 6KB - Virtual size: 5KB

.data Size: 512B - Virtual size: 1KB

.rsrc Size: 27KB - Virtual size: 26KB

.reloc Size: 1024B - Virtual size: 644B

.text
Size: 6KB - Virtual size: 5KB

.data
Size: 512B - Virtual size: 1KB

.rsrc
Size: 27KB - Virtual size: 26KB

.reloc
Size: 1024B - Virtual size: 644B