f682356735fc284e46be62529a94b5cf_JaffaCakes118

General

Target

f682356735fc284e46be62529a94b5cf_JaffaCakes118
Size

84KB
MD5

f682356735fc284e46be62529a94b5cf
SHA1

d2d71fb6d6adf4f42db07b2a1279f0fc08e6aa7b
SHA256

1d7a041a86be339e2b686d2e51c4823675d3291afee7dfed6052c3113b827085
SHA512

e32e9705188a0d11e5b2838b228d9cafcae2058cc042265bb1450c871fdcbd7ef11ca7d327868c3271628598e2c640936cf6ce3007b62894b70f6275b1c9b27f
SSDEEP

1536:NSO5C9ZKjlvssypTIgY3Z9+0xc9anwtN/YobrDx4:b2ZKj2sgH0mvyu4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f682356735fc284e46be62529a94b5cf_JaffaCakes118

Files

f682356735fc284e46be62529a94b5cf_JaffaCakes118
.exe windows:20779 windows x86 arch:x86

cfd675cd5ddf84f2c662e6851fc7fab0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

PostMessageW
PostMessageW
SetTimer
GetSystemMetrics
PostMessageW
DestroyWindow
GetWindowRect
CreateWindowExW
ReleaseDC
UpdateLayeredWindow
GetWindowRect
DestroyWindow
GetDlgItem
GetSystemMetrics
PostMessageW
CreateWindowExW
PostMessageW
GetDlgItem
SetTimer
DefWindowProcW
LoadIconW
GetDC
LoadIconW
DefWindowProcW
GetMessageW
SetTimer
CreateWindowExW
LoadStringW
GetDC

kernel32

GetTickCount
GetACP
FreeLibrary
lstrcmpiW
GetCurrentThreadId
QueryPerformanceCounter
GetModuleHandleW
GetModuleHandleW
GetACP
GetCommandLineW
ExitProcess
lstrcmpiW
VirtualFree
GetCommandLineW
GetCommandLineW
GetCurrentProcess
QueryPerformanceCounter
VirtualAlloc
GetTickCount
GetTickCount
GetModuleHandleA
GetCommandLineW
GetModuleHandleA
QueryPerformanceCounter
MultiByteToWideChar
GetCommandLineW
GetModuleHandleW
GetProcessHeap
QueryPerformanceCounter
GetModuleHandleW
LocalFree
FormatMessageW
LocalAlloc

gdi32

LineTo
GetTextMetricsW
GetDeviceCaps
SelectObject
PatBlt
DeleteDC
MoveToEx
ExtTextOutW
BitBlt
SetBkColor
SetBkMode
CreateCompatibleDC
PatBlt
MoveToEx
GetObjectW
SetTextColor
DeleteObject
GetDeviceCaps
CreateCompatibleBitmap
BitBlt

advapi32

GetLengthSid
RegDeleteKeyW
RegQueryInfoKeyW
RegCloseKey
RegDeleteValueW

Sections

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 59KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cfd675cd5ddf84f2c662e6851fc7fab0

Headers

File Characteristics

Imports

user32

kernel32

gdi32

advapi32

Sections

.text Size: 20KB - Virtual size: 20KB

.rdata Size: 2KB - Virtual size: 4KB

.edata Size: 59KB - Virtual size: 80KB

.rsrc Size: 1KB - Virtual size: 4KB

.text
Size: 20KB - Virtual size: 20KB

.rdata
Size: 2KB - Virtual size: 4KB

.edata
Size: 59KB - Virtual size: 80KB

.rsrc
Size: 1KB - Virtual size: 4KB