033851cc277f7a895c96d31365c206b8_JaffaCakes118

General

Target

033851cc277f7a895c96d31365c206b8_JaffaCakes118
Size

186KB
MD5

033851cc277f7a895c96d31365c206b8
SHA1

870ca4b6fd2328d16e4e599586ba134c85f3d3d5
SHA256

e239f1e63492a3c3b45cfeb6cbbb141a4d3e7a6b0b715fe523fa782e27afa053
SHA512

be809aa97c36f85c8837407b17da2cac37b9351e360c3bf0d2546da101958e7e279b74adcc9438ede49fc045cb457142bcda115b4ff9095dbf806cfd94a04193
SSDEEP

3072:lx5IflhLJQuAXrdGTJR7pZXipNP+DEnTPtluQl+UUlVtI5wD/uv2igzk2lyS2v:XGhLKuA7A7FZypMgnrtC1DIGyCzk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
033851cc277f7a895c96d31365c206b8_JaffaCakes118

Files

033851cc277f7a895c96d31365c206b8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1407bbaa16c48bf3f6ddb5b105ac78f3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetClassLongA
GetClipboardData
CallNextHookEx
GetCursor
GetMenuItemID
FillRect
RegisterClipboardFormatA
TranslateMessage
IsChild
GetDCEx
DrawAnimatedRects
GetPropA
DrawEdge
EnableScrollBar
CheckMenuItem
InflateRect
DestroyCursor
SetMenuItemInfoA
SetScrollInfo
GetScrollInfo
GetWindowDC
IsWindowUnicode
CreateMenu
UnhookWindowsHookEx
GetCapture
IsWindowEnabled
InsertMenuA
GetTopWindow
IsIconic
IsRectEmpty
MessageBeep
LoadBitmapA
IsWindowVisible
RedrawWindow
DrawIcon
PostQuitMessage
OffsetRect
GetActiveWindow
GetSysColorBrush
KillTimer
GetDesktopWindow

kernel32

GetOEMCP
VirtualAlloc
ExitThread
lstrlenA
GetProcAddress
GetModuleHandleA
LoadLibraryA
ExitProcess
VirtualAllocEx
GetVersionExA
GetCommandLineA
LocalAlloc
GetACP
LoadLibraryExA
GetLastError
GlobalAlloc

Sections

.text
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 133KB - Virtual size: 133KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 7KB - Virtual size: 130KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 190B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1407bbaa16c48bf3f6ddb5b105ac78f3

Headers

File Characteristics

Imports

user32

kernel32

Sections

.text Size: 32KB - Virtual size: 32KB

.data Size: 133KB - Virtual size: 133KB

.rdata Size: 7KB - Virtual size: 130KB

.idata Size: 512B - Virtual size: 190B

.rsrc Size: 12KB - Virtual size: 11KB

.text
Size: 32KB - Virtual size: 32KB

.data
Size: 133KB - Virtual size: 133KB

.rdata
Size: 7KB - Virtual size: 130KB

.idata
Size: 512B - Virtual size: 190B

.rsrc
Size: 12KB - Virtual size: 11KB