eb13bedc6ff52d09d4a94d3b2c42415b_JaffaCakes118

General

Target

eb13bedc6ff52d09d4a94d3b2c42415b_JaffaCakes118
Size

326KB
MD5

eb13bedc6ff52d09d4a94d3b2c42415b
SHA1

ba03b8c786a37df2fa8a94293ad460ae5aee0697
SHA256

581b610f650d5245cbabe8f47385a03e36528830508404105e48c62143bab409
SHA512

8f341fc041268bbc891e9fbbab2233aeacac8afb69a9da8131cd8d4d24a84b77b1cde8fd8f37c5715dabc81aa95d8f6503b5de902c8484bceee326c7616959c6
SSDEEP

6144:OPboBW0kX8MHfWA705nXJaWzbee0wqoh1P9GGvrnOF/NPNIYGJmdQ2V7v/tR9Fl4:OP0A0q905XBjhFnI/RNIZ8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
eb13bedc6ff52d09d4a94d3b2c42415b_JaffaCakes118

Files

eb13bedc6ff52d09d4a94d3b2c42415b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a71fc99af503dac5d7c118adc752cfa0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
Sleep
HeapDestroy
HeapCreate
ReadFile
SetThreadPriority
CreateThread
CloseHandle
WaitForSingleObject
SetFilePointer
FindResourceA
LoadResource
SizeofResource
lstrlenA
lstrcatA
SetLastError
RtlZeroMemory
GetTickCount
GetProcAddress
GetModuleHandleA
CreateMutexA
GetLastError
ExitProcess
HeapAlloc

user32

ShowWindow
SetWindowTextA
SetWindowRgn
SetWindowPos
SetWindowLongA
SetLayeredWindowAttributes
SetFocus
SetDlgItemTextA
SendMessageA
OffsetRect
LoadIconA
GetWindowRect
GetWindowLongA
GetDlgItemTextA
GetDlgItem
GetClientRect
FrameRect
FillRect
EndPaint
EndDialog
DrawTextA
DialogBoxParamA
BeginPaint
wsprintfA

comctl32

InitCommonControls

gdi32

CombineRgn
CreateFontA
CreateRectRgn
CreateRectRgnIndirect
CreateSolidBrush
DeleteObject
LineTo
MoveToEx
RoundRect
SelectObject
SetBkMode
SetTextColor
CreatePen

winmm

waveOutGetPosition
waveOutOpen
waveOutPrepareHeader
waveOutReset
waveOutUnprepareHeader
waveOutWrite
waveOutClose

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 312KB - Virtual size: 311KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a71fc99af503dac5d7c118adc752cfa0

Headers

File Characteristics

Imports

kernel32

user32

comctl32

gdi32

winmm

Sections

.text Size: 10KB - Virtual size: 9KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 1024B - Virtual size: 73KB

.rsrc Size: 312KB - Virtual size: 311KB

.text
Size: 10KB - Virtual size: 9KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 1024B - Virtual size: 73KB

.rsrc
Size: 312KB - Virtual size: 311KB