ddb4be38bb884b7330d3f40955ba53a4_JaffaCakes118

General

Target

ddb4be38bb884b7330d3f40955ba53a4_JaffaCakes118
Size

22KB
MD5

ddb4be38bb884b7330d3f40955ba53a4
SHA1

d5dc25ce7d09d6dfba32f870b6d826f082b5af78
SHA256

d6d71a9d88e56487df1a7256997af43aec476d2a19597a70afeb8d74aae9b833
SHA512

8ff8d3538df21d7fccc5904caf5b5fc5d760ab9df42374fa7ba42a564448b288a64339dd994812787d4526b119e405dcd48394ee545a57f488996532d0e90fb8
SSDEEP

384:TW3EpLVLadA6ORZC+unZ4otindn6idEFmr4ylck9lJ/a5dzWJrd1kq:TW3EpLVLadA6g4Zvtid6KXr1lc0lU5dM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ddb4be38bb884b7330d3f40955ba53a4_JaffaCakes118

Files

ddb4be38bb884b7330d3f40955ba53a4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d37521a94142174b1126dafbd41f86a2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcess
lstrcatA
GetACP
GetModuleFileNameA
SetHandleCount
MultiByteToWideChar
lstrcpynA
GetStringTypeW
GetOEMCP
TerminateProcess
GetStartupInfoA
lstrcpyA
LCMapStringW
GetFileType
GetCommandLineA
CreateFileA
GetVersion
GetStdHandle
WriteFile
LCMapStringA
lstrcpynW
GetStringTypeA

user32

GetDlgItem
EndDialog
GetMenu
GetDC
DrawTextA
GetWindowTextA
LoadMenuA
GetWindowTextLengthA
DrawIcon
DrawTextW
GetCursor
CopyRect
CopyIcon
InsertMenuA
IsWindow
LoadCursorA
DialogBoxParamA
CreateIcon
CloseWindow
CopyImage
DrawIconEx
IsMenu
GetFocus
DialogBoxParamW

comctl32

ImageList_AddIcon
CreateStatusWindow
CreateStatusWindowW
DllGetVersion
DrawStatusTextW
ImageList_Copy
CreateMappedBitmap
ImageList_Create
ImageList_EndDrag
ImageList_LoadImageW

advapi32

RegOpenKeyExA
RegCreateKeyA
RegQueryValueExW
RegEnumKeyExA
RegQueryValueW
RegEnumValueW
RegEnumKeyExW
RegCreateKeyExW
RegQueryValueExA
RegDeleteValueA
RegDeleteKeyA

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 17.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d37521a94142174b1126dafbd41f86a2

Headers

File Characteristics

Imports

kernel32

user32

comctl32

advapi32

Sections

.text Size: 3KB - Virtual size: 2KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 16KB - Virtual size: 17.5MB

.text
Size: 3KB - Virtual size: 2KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 16KB - Virtual size: 17.5MB