dc42754d7a4e0733d77487e8ddfc1b53_JaffaCakes118

General

Target

dc42754d7a4e0733d77487e8ddfc1b53_JaffaCakes118
Size

7KB
MD5

dc42754d7a4e0733d77487e8ddfc1b53
SHA1

cd6fa7b22cb14ffd7634c03523dbc4eb6a12deba
SHA256

ac41672cd89b4f7dbf99f0671e25bec0d69f46cbe53dc51a0e8470945ceef8b4
SHA512

e4d822043aaf5edf8d5a789eb7d6f65dc942309052be8588cb39e78620cc1ce976ae63cb7fbd5ab289c4b42586366206a467227cedb336b1ec66e7a9c3abd0ba
SSDEEP

96:elWku8nDnNagPGIL8ULjPFXoq1kYvHW1XS9HnwcdkQhsjIswgXglLAwA5jvxMZXX:ezrNVu48SdPHW1XsH9kQ8pXaAwAI1OtC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/sectionAdd.exe

Files

dc42754d7a4e0733d77487e8ddfc1b53_JaffaCakes118
.zip
MAKE.BAT
sectionAdd.asm
sectionAdd.exe
.exe windows:1 windows x86 arch:x86

a4c6e1aa622db2d4dc07e478f8134238

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

user32

ReleaseDC
CreateDialogParamA
LoadIconA
SendDlgItemMessageA
FindWindowA
CreatePopupMenu
CheckDlgButton
SetWindowTextA
GetSystemMetrics
GetWindowRect
GetDlgItemInt
GetCursorPos
EnableWindow
CreateWindowExA
MessageBoxA
CheckRadioButton
AppendMenuA
ShowWindow
LoadBitmapA
LoadCursorA
KillTimer
IsDlgButtonChecked
SetDlgItemInt
GetDlgItemTextA
GetDlgItem
GetDC
SetDlgItemTextA
EndDialog
SetTimer
DialogBoxParamA
TrackPopupMenu
SetCursor
SetWindowPos
GetSysColor
SendMessageA

gdi32

StretchBlt
SetTextColor
SetBkColor
SelectObject
GetStockObject
DeleteObject
DeleteDC
CreateCompatibleDC
BitBlt

kernel32

ExitProcess
GetTickCount
lstrlenA
lstrcpyA
GetSystemDirectoryA
lstrcmpiA
lstrcatA
GetProcAddress
WriteFile
Sleep
GetModuleHandleA
CreateFileA
SetFilePointer
ReadFile
GetLocalTime
LoadLibraryA
CloseHandle
GlobalUnlock
GetFileSize
GlobalLock
GlobalFree
GetCurrentDirectoryA
GlobalAlloc
GetWindowsDirectoryA
FreeLibrary

comdlg32

GetOpenFileNameA

comctl32

InitCommonControls

advapi32

RegQueryValueExA
RegCreateKeyExA
RegCloseKey
RegSetValueExA

shell32

Shell_NotifyIcon
ShellExecuteA

Sections

CODE
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a4c6e1aa622db2d4dc07e478f8134238

Headers

File Characteristics

Imports

user32

gdi32

kernel32

comdlg32

comctl32

advapi32

shell32

Sections

CODE Size: 2KB - Virtual size: 4KB

DATA Size: 512B - Virtual size: 4KB

.idata Size: 2KB - Virtual size: 4KB

.reloc Size: 512B - Virtual size: 4KB

CODE
Size: 2KB - Virtual size: 4KB

DATA
Size: 512B - Virtual size: 4KB

.idata
Size: 2KB - Virtual size: 4KB

.reloc
Size: 512B - Virtual size: 4KB