db18efda48764eeea84e33befe9791bb_JaffaCakes118

General

Target

db18efda48764eeea84e33befe9791bb_JaffaCakes118
Size

71KB
MD5

db18efda48764eeea84e33befe9791bb
SHA1

d113b629a019c50e7bc5cc3b1805b230cc579462
SHA256

e5b75eed59c8bfcb0b6d17daf3ce3da8c89e992551bb9ac03fafa3bbd60b6c12
SHA512

edc87b7efc46c3e5099c2d246f65bd1ba3986a729d5456cbef5f4e85e45a97d37cd8237571ba29db84b34a84148696e5566604c5e7f251680691810d590465e0
SSDEEP

1536:yUDeDoIHLaCuKxeNEFi90VAIs5X8ZAliIfOT:yUyU8aCunCFiibs5XEA4V

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
db18efda48764eeea84e33befe9791bb_JaffaCakes118

Files

db18efda48764eeea84e33befe9791bb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a9643bf85119dbec9751956da6a872ab

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

InsertMenuA
DialogBoxParamA
DrawIcon
GetFocus
IsWindow
CopyImage
CloseWindow
GetWindowTextA
GetMenu
GetWindowTextLengthA
CreateIcon
DialogBoxParamW
EndDialog
GetDlgItem
GetCursor
GetDC
DrawTextA
IsMenu
LoadMenuA
LoadCursorA
DrawIconEx
CopyIcon
DrawTextW

kernel32

MultiByteToWideChar
GetCommandLineA
GetVersion
SetHandleCount
GetStringTypeA
GetStdHandle
GetStringTypeW
GetFileType
GetCurrentProcess
WriteFile
lstrcatA
TerminateProcess
CreateFileA
GetModuleFileNameA
GetACP
LCMapStringW
GetCPInfo
GetOEMCP
SetFilePointer
lstrcpynA
LCMapStringA

comctl32

InitCommonControls
CreateToolbarEx
ImageList_Draw
ImageList_LoadImageA
ImageList_AddIcon
DllGetVersion
ImageList_GetIcon
ImageList_Copy
CreateToolbar
MenuHelp
ImageList_Destroy
ImageList_LoadImageW

advapi32

RegQueryValueA
RegSetValueW
RegCreateKeyA
RegDeleteKeyW
RegOpenKeyExW
RegDeleteValueW
RegOpenKeyA
RegCreateKeyW
RegEnumKeyExW
RegEnumKeyW

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 50KB - Virtual size: 17.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 15KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a9643bf85119dbec9751956da6a872ab

Headers

File Characteristics

Imports

user32

kernel32

comctl32

advapi32

Sections

.text Size: 3KB - Virtual size: 2KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 50KB - Virtual size: 17.7MB

.rsrc Size: 15KB - Virtual size: 16KB

.text
Size: 3KB - Virtual size: 2KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 50KB - Virtual size: 17.7MB

.rsrc
Size: 15KB - Virtual size: 16KB