046c7f02aba5ca279aef255dab129030_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

046c7f02aba5ca279aef255dab129030_JaffaCakes118
Size

174KB
MD5

046c7f02aba5ca279aef255dab129030
SHA1

a7b0d720a5bc675f5eca99bbbd21730194466138
SHA256

ddeddd3544ade8f35a31ae35c09d364afd098de828aa6078df215690771e51e8
SHA512

8b15cd4871e554f6d96a732766b3b6e65b33a7601702da6db6b6e4e6de929246a98cb13c61c13e0f12a04eba68ed8b74a05ad7da0eda6c1eb8ccd85cadc0f888
SSDEEP

3072:ETVp0sZQijqs7GX/W9imZIzcQn055c/3orHlhST8i2bIR:Cp0sNjqs7q/6ZI4iWzLST8RI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
046c7f02aba5ca279aef255dab129030_JaffaCakes118

Files

046c7f02aba5ca279aef255dab129030_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e0a9384069ebc955843273050ce18bf7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenA
GetModuleHandleA
GetACP
ExitThread
GetCommandLineA
LoadLibraryA
VirtualAlloc
LoadLibraryExA

ole32

CoCreateInstanceEx
CoReleaseMarshalData
OleRun
CoCreateGuid

comdlg32

FindTextA
ChooseColorA

comctl32

ImageList_Write
ImageList_DragShowNolock
ImageList_Destroy
ImageList_Add

gdi32

CreateDIBSection
SetBkMode
SetTextColor
SaveDC

advapi32

RegQueryValueA
RegCreateKeyExA
RegDeleteKeyA

msvcrt

sin
strncmp
memmove
memcpy

user32

GetCursor
GetWindow
GetLastActivePopup
GetMessagePos
EnumWindows
GetKeyNameTextA
DrawTextA
GetMenuItemID
SetWindowTextA
GetKeyState
GetScrollPos
TrackPopupMenu
DefMDIChildProcA
EndDeferWindowPos
IsChild
GetSubMenu
GetFocus
GetMenuState
CreatePopupMenu
GetIconInfo
EnumThreadWindows
EqualRect
GetCursorPos
IsDialogMessageA
GetDCEx
FrameRect
GetMenuStringA
CharNextA
GetParent
DrawFrameControl
DrawMenuBar
CreateMenu
GetClipboardData
FillRect
DrawIcon
CallWindowProcA
GetClientRect
DrawEdge
DrawIconEx
BeginPaint
ShowScrollBar
CharLowerA
GetScrollRange
GetDlgItem
DeferWindowPos
GetClassInfoA
GetSysColorBrush
GetSysColor
IsWindowVisible
CharLowerBuffA
DefWindowProcA
GetPropA
GetActiveWindow

shell32

SHGetFolderPathA
SHGetFileInfoA
DragQueryFileA
SHFileOperationA

Sections

.text
Size: 51KB - Virtual size: 51KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 117KB - Virtual size: 197KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e0a9384069ebc955843273050ce18bf7

Headers

File Characteristics

Imports

kernel32

ole32

comdlg32

comctl32

gdi32

advapi32

msvcrt

user32

shell32

Sections

.text Size: 51KB - Virtual size: 51KB

.data Size: 2KB - Virtual size: 2KB

DATA Size: 117KB - Virtual size: 197KB

.idata Size: 1KB - Virtual size: 1KB

.text
Size: 51KB - Virtual size: 51KB

.data
Size: 2KB - Virtual size: 2KB

DATA
Size: 117KB - Virtual size: 197KB

.idata
Size: 1KB - Virtual size: 1KB