ebe46051e6ed0ea61926a28dc1006129_JaffaCakes118

General

Target

ebe46051e6ed0ea61926a28dc1006129_JaffaCakes118
Size

156KB
MD5

ebe46051e6ed0ea61926a28dc1006129
SHA1

4190a20a86013e654439ac837568c89e19357615
SHA256

4a9e454e99185e73b7fd235d86af837cb4aaf221e07dc88dc42c89ada5658d41
SHA512

0323f13a542acb966e1b81a718b1419d73395c30ef5e786c13c85370a6f498b552cb0da8c6203672267220d2a33615e65b682aecb7ed448dff4c02fee0747a18
SSDEEP

1536:a7Nx7zA4eBF2GQRVVsRQ5gRkmqeO0D/btGSRSh5+OsSC:wNVzLeBF2vVqwmRDtlEh5+OZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ebe46051e6ed0ea61926a28dc1006129_JaffaCakes118

Files

ebe46051e6ed0ea61926a28dc1006129_JaffaCakes118
.exe windows:4 windows x86 arch:x86

56bed5644a39fca008a447496003937e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetWindowDC
TranslateMessage
GetMessageA
GetDC
LoadCursorA
DrawTextA
DispatchMessageA
DefWindowProcA
CreateWindowExA
LoadIconA
PostMessageA
PostQuitMessage
RegisterClassExA
UpdateWindow
EndPaint
GetDlgCtrlID
GetParent
GetWindowLongA
GetWindowRect
LoadBitmapA
ReleaseCapture
SetCapture
SetWindowLongA
SetWindowPos
ShowWindow
SetWindowTextA
SetWindowRgn
SetRect
GetSystemMetrics
BeginPaint
SendMessageA

kernel32

LocalFree
LocalAlloc
MulDiv
SetLastError
CloseHandle
lstrcpyA
CreateThread
ExitProcess
FindResourceA
FreeResource
GetModuleHandleA
GetTickCount
LoadResource
LockResource
SetThreadPriority
SizeofResource
Sleep
lstrcatA

gdi32

CreateFontA
CreateCompatibleBitmap
SetTextColor
SetTextAlign
SetBkMode
SetBkColor
SelectObject
DeleteObject
DeleteDC
CreateSolidBrush
CreateRoundRectRgn
CreateDIBSection
CreateCompatibleDC
CombineRgn
BitBlt
GetDeviceCaps

ole32

CoInitialize
CreateStreamOnHGlobal
CoUninitialize
CoTaskMemAlloc
CoTaskMemFree

oleaut32

OleLoadPicture

winmm

waveOutWrite
waveOutPrepareHeader
waveOutOpen
waveOutClose
waveOutReset
waveOutUnprepareHeader
waveOutGetPosition

Sections

pec1
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

yC
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

56bed5644a39fca008a447496003937e

Headers

File Characteristics

Imports

user32

kernel32

gdi32

ole32

oleaut32

winmm

Sections

pec1 Size: 56KB - Virtual size: 56KB

.rsrc Size: 68KB - Virtual size: 68KB

.rsrc Size: 4KB - Virtual size: 4KB

yC Size: 24KB - Virtual size: 24KB

pec1
Size: 56KB - Virtual size: 56KB

.rsrc
Size: 68KB - Virtual size: 68KB

.rsrc
Size: 4KB - Virtual size: 4KB

yC
Size: 24KB - Virtual size: 24KB