06f320e4b5a6aed46635a34095ca7619_JaffaCakes118

General

Target

06f320e4b5a6aed46635a34095ca7619_JaffaCakes118
Size

259KB
MD5

06f320e4b5a6aed46635a34095ca7619
SHA1

d19fa9abea3591eae9638972e6a2b98fbad5903f
SHA256

e5eabceadf8a748490d6219b609b60f61b95fce52d7701996a3665337c1018a1
SHA512

2005492e79df7d996f2b166d029f3aec7fe9b1f18363d5cc306138f1d01f2955fcaa4de46c07c14333e41d07e83a9a4df684c027a5ab9e75776087d820c3e60d
SSDEEP

6144:rvRES8P4A1wZI8heW1lBXJs69zYhPtC3PllDbML:yS8PrWI81G6OPtEPl5bk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
06f320e4b5a6aed46635a34095ca7619_JaffaCakes118

Files

06f320e4b5a6aed46635a34095ca7619_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c96071557622f6e7a90b7be048cc7cab

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

BlockInput
GetWindowTextA
CalcMenuBar
GetFocus
DialogBoxParamA
DrawIconEx
CloseWindow
EndDialog
CopyRect
DrawIcon
IsWindow
LoadMenuA
AlignRects
CopyImage
DrawTextA
CreateIcon
GetWindowTextLengthA
CopyIcon
GetDC
AppendMenuW
GetDlgItem
CopyIcon
DrawTextA
InsertMenuA
DialogBoxParamW
AppendMenuW
GetFocus
CopyRect
CalcMenuBar
EndDialog
DrawTextW
GetCursor
GetWindowTextLengthA
BlockInput
IsWindow
GetDC
LoadMenuA
CloseWindow
GetWindowTextA
AlignRects
GetMenu
DrawIcon

kernel32

FreeConsole
GetStringTypeA
FreeConsole
GetCommandLineA
FreeConsole
GetStringTypeW
FreeConsole
GetModuleFileNameA
FreeConsole
GetLogicalDrives
FreeConsole
HeapFree
FreeConsole
GlobalAlloc
FreeConsole
lstrcatA
GetLocalTime
GetFileAttributesA
HeapAlloc
GetOEMCP
GlobalFree
ExitProcess
Sleep
lstrcatA
GetCPInfo
GetModuleFileNameA
GetCommandLineA
WideCharToMultiByte
lstrcmpiA
lstrcpyA
GetStringTypeW
GetLogicalDrives
GetModuleHandleA
HeapAlloc
GlobalAlloc
lstrcmpiA
GetLastError
WideCharToMultiByte
DeleteFileA
GetModuleFileNameA
GetLastError
lstrcpyA
GetFileSize
GetCPInfo
lstrcpynA
GetFileAttributesA
lstrcmpA
HeapFree
lstrcatA
GetOEMCP

Sections

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdaaa
Size: 218KB - Virtual size: 218KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edada
Size: 7KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bds
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ

.rddc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c96071557622f6e7a90b7be048cc7cab

Headers

File Characteristics

Imports

user32

kernel32

Sections

.text Size: 23KB - Virtual size: 22KB

.rdaaa Size: 218KB - Virtual size: 218KB

.edada Size: 7KB - Virtual size: 14KB

.bds Size: - Virtual size: 1KB

.rddc Size: 6KB - Virtual size: 6KB

.text
Size: 23KB - Virtual size: 22KB

.rdaaa
Size: 218KB - Virtual size: 218KB

.edada
Size: 7KB - Virtual size: 14KB

.bds
Size: - Virtual size: 1KB

.rddc
Size: 6KB - Virtual size: 6KB