f02ae77f42a54c9a5c3146946e976e7f_JaffaCakes118

General

Target

f02ae77f42a54c9a5c3146946e976e7f_JaffaCakes118
Size

951KB
MD5

f02ae77f42a54c9a5c3146946e976e7f
SHA1

5d620e6a2b6d0114c337a1da0570169ef6d017a0
SHA256

5e7d851c80be632c053d67007c66e049a502da8fc95f4b5333d0b1c94fd960b7
SHA512

ab47b010f7ee16a692710007b2a82300400f0c8ddfaa56d9da66e835257e11368afbe20c65fbb1cdeb6d1a848d023aa62cccf5d9044969106aab9714db0429fd
SSDEEP

24576:iBnZfDkSaeemiUFRD7mb9IWI/wX8RK8gFEYfvkr:owStniUFRD7m56QxpfvU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f02ae77f42a54c9a5c3146946e976e7f_JaffaCakes118

Files

f02ae77f42a54c9a5c3146946e976e7f_JaffaCakes118
.exe windows:5 windows x86 arch:x86

2fb967c58e395f2f3491fc40c1fa815b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHGetSpecialFolderPathA
ShellExecuteA
Shell_NotifyIconW

msvfw32

DrawDibProfileDisplay
ICRemove

advapi32

RegDeleteValueA
RegQueryValueExA
RegCloseKey
RegOpenKeyA

shlwapi

PathFileExistsA
StrToIntA

user32

DestroyIcon
CreatePopupMenu
DestroyMenu
FindWindowA
GetCursorPos
DispatchMessageA
PostQuitMessage
SetForegroundWindow
GetAsyncKeyState
CharNextA
RegisterWindowMessageA
DefWindowProcA
RegisterClassA
CreateWindowExA
SetMenuDefaultItem
LoadImageA
LoadStringW
MessageBoxA
GetWindowTextW
GetMessageA
DestroyWindow
InsertMenuItemW
SendMessageA
TrackPopupMenu
EnableMenuItem
InsertMenuItemA
CharNextW

kernel32

GetModuleHandleA
lstrlenA
SetFilePointer
FreeLibrary
CreateFileA
GetTickCount
GetLogicalDrives
lstrcpynW
ExitProcess
lstrlenW
GlobalAlloc
CloseHandle
ReadFile
GetPrivateProfileStringA
SetErrorMode
GetPrivateProfileIntA
GetDriveTypeW
lstrcpynA
GetEnvironmentVariableA
GetModuleFileNameA
GetVolumeInformationW
LoadLibraryExA

Sections

.text
Size: 515KB - Virtual size: 514KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 405KB - Virtual size: 3.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2fb967c58e395f2f3491fc40c1fa815b

Headers

File Characteristics

Imports

shell32

msvfw32

advapi32

shlwapi

user32

kernel32

Sections

.text Size: 515KB - Virtual size: 514KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 405KB - Virtual size: 3.7MB

.rsrc Size: 27KB - Virtual size: 27KB

.text
Size: 515KB - Virtual size: 514KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 405KB - Virtual size: 3.7MB

.rsrc
Size: 27KB - Virtual size: 27KB