01e2c9b0d460427a59a82ac2c34d0d90_JaffaCakes118

General

Target

01e2c9b0d460427a59a82ac2c34d0d90_JaffaCakes118
Size

185KB
MD5

01e2c9b0d460427a59a82ac2c34d0d90
SHA1

b198d10b8a50e6c5f579bef90ce255d957754e38
SHA256

ba3624e03e68e7d38f41b6c9b29c09ee9e9ba46b7a46c6edcc27fa4c7d26cf7f
SHA512

7d5361d38e51d79b626d2936c7f92be7244f3f4569130535f04c1072b2f9ea8f11351c0f1f0a64b834fafafa5c690ab20d96f25b56ad4d90ecc1153caaaa7ffa
SSDEEP

3072:SdziGfQxOmYl7vry+gfeIitRCnFVMW82+cDPd0imkkDQSm8:+0YlZICRCFV8rcDPwhD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
01e2c9b0d460427a59a82ac2c34d0d90_JaffaCakes118

Files

01e2c9b0d460427a59a82ac2c34d0d90_JaffaCakes118
.exe windows:4 windows x86 arch:x86

16e774cbaf2c59c81ca51d77678f70ec

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

VerInstallFileA
GetFileVersionInfoSizeA

user32

FillRect
IsWindowVisible
SetActiveWindow
InsertMenuItemA
CharNextW
SetClipboardData
ShowOwnedPopups
IsDialogMessageA
IsWindowEnabled
DrawTextA
CharToOemA
ScreenToClient
GetTopWindow

kernel32

GetThreadLocale
lstrcpynA
SetThreadLocale
GetStringTypeW
FreeLibrary
VirtualAlloc
ExitThread
GetStdHandle
GetModuleHandleA
FreeResource
GetOEMCP
GetACP
GetEnvironmentStrings
GetProcAddress
LoadLibraryExA
SetEndOfFile
GetLastError

shlwapi

SHGetValueA
SHDeleteKeyA
SHQueryValueExA

Sections

CODE
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 132KB - Virtual size: 131KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 6KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 512B - Virtual size: 148B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 540B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

16e774cbaf2c59c81ca51d77678f70ec

Headers

File Characteristics

Imports

version

user32

kernel32

shlwapi

Sections

CODE Size: 31KB - Virtual size: 30KB

.tls Size: 132KB - Virtual size: 131KB

.idata Size: 6KB - Virtual size: 113KB

DATA Size: 512B - Virtual size: 148B

.rdata Size: 1024B - Virtual size: 540B

.data Size: 13KB - Virtual size: 12KB

CODE
Size: 31KB - Virtual size: 30KB

.tls
Size: 132KB - Virtual size: 131KB

.idata
Size: 6KB - Virtual size: 113KB

DATA
Size: 512B - Virtual size: 148B

.rdata
Size: 1024B - Virtual size: 540B

.data
Size: 13KB - Virtual size: 12KB