06b42e81c224e03dd10b6168d1ce29ba_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

06b42e81c224e03dd10b6168d1ce29ba_JaffaCakes118
Size

64KB
MD5

06b42e81c224e03dd10b6168d1ce29ba
SHA1

52f1b92b6afac473eadee4db19127429dfcd04cd
SHA256

bd945819e6187da90ef30c2a310c6aa49d82addd5bd86e0da0f4d88d56d73445
SHA512

f24c43717507b38ffaf536be1dbe92be40a3feb2464c220f8f497185695dd19d4d2b8c03d12ee7a2735686ac27866a57f31c48047abbf4725d95416b03f5df19
SSDEEP

1536:IkHGcCYNndj7v08acy2UyPqTuifzPism8Ls5RY7sqBCdmS:IWvdjA83zUTFistj7sOC4S

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
06b42e81c224e03dd10b6168d1ce29ba_JaffaCakes118

Files

06b42e81c224e03dd10b6168d1ce29ba_JaffaCakes118
.exe windows:4 windows x86 arch:x86

35f9b6cbc9cd38aa8e830e65d81f6df1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetThreadLocale
ExitProcess
SizeofResource
VirtualAlloc
GlobalAlloc
VirtualAllocEx
LoadLibraryA
SetLastError
VirtualFree

gdi32

GetClipBox
GetDIBColorTable
CreateDIBitmap
CreateCompatibleBitmap
CreateFontIndirectA
CreateBrushIndirect

ole32

CoCreateGuid
CoFreeUnusedLibraries
StgCreateDocfileOnILockBytes
StgOpenStorage

user32

IsDialogMessageW
WaitMessage
IsWindow
DrawIconEx
SetActiveWindow
RegisterClipboardFormatA
DrawTextA
IntersectRect
DispatchMessageW
InvalidateRect
GetForegroundWindow
CharNextW
GetFocus
CharUpperA
ReleaseDC
GetMenuState
GetLastActivePopup
InsertMenuA
SetMenu
SetScrollPos
GetMenuItemInfoA
CharLowerA
LoadIconA
GetCursorPos
IsWindowEnabled
PtInRect
TrackPopupMenu
GetClipboardData
EmptyClipboard
DispatchMessageA
OpenClipboard
DrawIcon
InflateRect
SetTimer
GetSubMenu
GetWindowLongW
GetSystemMenu
RemovePropA
DrawFrameControl
SetFocus
GetMessagePos
ShowOwnedPopups
TranslateMessage
SendMessageA
ScrollWindow
SetScrollRange
GetWindowTextLengthA
GetMenuItemCount
DestroyIcon
GetMenu
DrawAnimatedRects
PostQuitMessage
SetPropA
GetCursor
EnumChildWindows
DestroyCursor
GetWindowLongA
OemToCharA
CreatePopupMenu
GetKeyboardLayoutList
CloseClipboard
ActivateKeyboardLayout
GetSystemMetrics
IsZoomed
InsertMenuItemA
GetTopWindow
LoadBitmapA
PostMessageA
GetDesktopWindow
OpenIcon
GetSysColor

Exports

Exports

ksYaN1SYotKJy@8

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 47KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

35f9b6cbc9cd38aa8e830e65d81f6df1

Headers

File Characteristics

Imports

kernel32

gdi32

ole32

user32

Exports

Exports

Sections

.text Size: 10KB - Virtual size: 10KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 47KB - Virtual size: 103KB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 10KB - Virtual size: 10KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 47KB - Virtual size: 103KB

.rsrc
Size: 2KB - Virtual size: 1KB