0647cb7cc3f0235573e6338fa263fece_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0647cb7cc3f0235573e6338fa263fece_JaffaCakes118
Size

123KB
MD5

0647cb7cc3f0235573e6338fa263fece
SHA1

8fe991bde8879ebc9f1e8de7e373d81235c632be
SHA256

860beb87f9f7c75bbc3ce06c24665ce6024f81778dc697d54ec7520ca6841742
SHA512

02559bae2ff0ee43beda14a0a4abaa4b17857de5f9d9d410b40faaa22a8d266b804eddddc244a63e761f4a73b22433814ebe48648a3dc836ebb57e55c3eb98f1
SSDEEP

3072:zVrlE37n1cfukY0xl8d+4hjUocoacd79J7mqF:tEmfuqlev/cncR9x

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0647cb7cc3f0235573e6338fa263fece_JaffaCakes118

Files

0647cb7cc3f0235573e6338fa263fece_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d67ab7cbe97856e938b8ed5c08926294

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineW
CloseHandle
VirtualAlloc
LoadLibraryA
CreateFileA
ExitProcess
Sleep
CompareStringA
ExitThread

user32

IsMenu
LoadIconA
GetMenuItemID
InflateRect
IsWindowVisible
DefFrameProcA
GetSystemMetrics
ReleaseDC
GetMenu
CharUpperBuffA
GetKeyNameTextA
SetPropA
GetFocus
GetWindowLongW
MapVirtualKeyA
CreateIcon
GetClassNameA
DeleteMenu
SetCursor
RedrawWindow
GetClientRect
GetDCEx
GetClassLongA
FillRect
OpenIcon
LoadBitmapA
GetWindowLongA
SetParent
GetWindow
GetScrollPos
UnregisterClassA
EmptyClipboard
GetMenuState
DrawAnimatedRects
IsWindow
GetClipboardData
KillTimer
GetKeyboardType
CheckMenuItem
ChildWindowFromPoint
CharNextA
IntersectRect
GetPropA
PeekMessageW
IsWindowEnabled
GetWindowPlacement
AdjustWindowRectEx
DestroyCursor
ClientToScreen
DestroyMenu
DrawIconEx
RemovePropA
CreateMenu
DispatchMessageA
GetSubMenu
GetActiveWindow
GetMenuItemInfoA
DefMDIChildProcA
IsZoomed
CharLowerA
GetClassInfoA

Exports

Exports

0pAFvT9v@16
T96Y4Z8KIj@12
gptjvO7MfquX@4
X6feAt0c@16
qtH9aWWGiB7LJ@20
9G0YS
Ba_4PlJnAB@20
_KSzP_22l_t5bw

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 102KB - Virtual size: 221KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data
.rdata
.rsrc/0/DIALOG/TEXTFILEDLG
.rsrc/0/MANIFEST/1
.xml
.rsrc/0/RCDATA/DVCLAL
.rsrc/0/STRING/4094
.rsrc/0/STRING/4095
.rsrc/1033/BITMAP/BBABORT.bmp
.rsrc/1033/version.txt
.text

Sharing

General

Malware Config

Signatures

Files

d67ab7cbe97856e938b8ed5c08926294

Headers

File Characteristics

Imports

kernel32

user32

Exports

Exports

Sections

.text Size: 12KB - Virtual size: 12KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 102KB - Virtual size: 221KB

.rsrc Size: 5KB - Virtual size: 4KB

.text
Size: 12KB - Virtual size: 12KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 102KB - Virtual size: 221KB

.rsrc
Size: 5KB - Virtual size: 4KB