01c626c1119ec0f9ae34ca86fb7ed403_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

01c626c1119ec0f9ae34ca86fb7ed403_JaffaCakes118
Size

112KB
MD5

01c626c1119ec0f9ae34ca86fb7ed403
SHA1

994f0bd44e4413fdab664751030329d44acd4278
SHA256

cf11c364eb5aa9de3061dc56a77c60ef5d8df64945d8a7d03b1cf18607d13041
SHA512

a1dd935393e637138dd084ad95ff86a5820b92b2c394a9752e2872cbb0f900313d6ea33152356b5d59734dc6c0c5f5419ea41bcfca4b0a0ccdf43329f1203ab9
SSDEEP

3072:ItK4WABOC7sYNETQM8G//clJu/5Rwx1pG:IpBhsY6R8yclJYUx1g

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
01c626c1119ec0f9ae34ca86fb7ed403_JaffaCakes118

Files

01c626c1119ec0f9ae34ca86fb7ed403_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6e66bdb901b119625bc151f6f0742207

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetPaletteEntries
CreateCompatibleDC
GetBitmapBits
CreateDIBitmap
RestoreDC
CreateBrushIndirect
GetPixel
SetBkMode
CreateCompatibleBitmap
CreatePalette

comctl32

ImageList_DragShowNolock
ImageList_GetBkColor
ImageList_DrawEx
ImageList_Destroy
ImageList_Create
ImageList_Draw
ImageList_Read
ImageList_Write
ImageList_Remove
ImageList_Add

shell32

SHGetDesktopFolder
SHGetDiskFreeSpaceA
DragQueryFileA

version

GetFileVersionInfoA
VerQueryValueA

oleaut32

SafeArrayCreate
OleLoadPicture
SysAllocStringLen
SysStringLen
SafeArrayGetElement
VariantChangeType
SafeArrayPtrOfIndex

ole32

CLSIDFromProgID
CoRegisterClassObject
CoReleaseMarshalData
CreateOleAdviseHolder
CreateBindCtx
CoDisconnectObject
OleCreateStaticFromData
CoGetObjectContext
CreateStreamOnHGlobal
CoFreeUnusedLibraries

user32

CloseClipboard
SetMenu
GetDCEx
DrawIconEx
SetForegroundWindow
GetClassInfoA
GetCursor
IsWindowEnabled
IsDialogMessageA
GetKeyState
DispatchMessageW
ActivateKeyboardLayout
SetScrollPos
GetForegroundWindow
GetMenuState
IsChild
InsertMenuItemA
DrawIcon
FindWindowA
TranslateMessage
GetClipboardData
GetWindowLongA
GetSystemMenu
TrackPopupMenu
LoadCursorA
ReleaseCapture
CreateIcon
GetKeyboardLayoutNameA

kernel32

ExitThread
GetTickCount
EnumCalendarInfoA
SetFilePointer
VirtualAlloc
GetModuleHandleA
GetProcAddress
LocalAlloc
LocalReAlloc
SetThreadLocale
GetVersionExA
GlobalAlloc
LockResource
GetOEMCP
LocalFree
lstrlenA

Sections

CODE
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 94B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 761B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6e66bdb901b119625bc151f6f0742207

Headers

File Characteristics

Imports

gdi32

comctl32

shell32

version

oleaut32

ole32

user32

kernel32

Sections

CODE Size: 29KB - Virtual size: 28KB

.idata Size: 76KB - Virtual size: 75KB

.tls Size: 4KB - Virtual size: 4KB

.edata Size: 512B - Virtual size: 94B

.rdata Size: 1024B - Virtual size: 761B

CODE
Size: 29KB - Virtual size: 28KB

.idata
Size: 76KB - Virtual size: 75KB

.tls
Size: 4KB - Virtual size: 4KB

.edata
Size: 512B - Virtual size: 94B

.rdata
Size: 1024B - Virtual size: 761B