084b0272e1c0723884fc747806721467_JaffaCakes118

General

Target

084b0272e1c0723884fc747806721467_JaffaCakes118
Size

96KB
MD5

084b0272e1c0723884fc747806721467
SHA1

e67f8be2e9130767b3968bce755d93c949f4dd75
SHA256

1de49a282b8798be24d0fd37ace6933610f13e301a17ab015a2ef856eceef4e2
SHA512

abacfadab1027154a705556102062dd1891bff0401214cc7c739eccbacddbb7a11d6350b50a6d15c2b7e85f658d6a71708a7e96656f7a1ac87036816440ea1d4
SSDEEP

1536:9LQKy1G48dSXbqiwQE2v0Fxi3bNvlC/vvYO3XgVqBkPESXYJwZuAAS3Kirw6636O:9L94sScTOT3bKvQ46iSPD3o66WO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
084b0272e1c0723884fc747806721467_JaffaCakes118

Files

084b0272e1c0723884fc747806721467_JaffaCakes118
.exe windows:4 windows x86 arch:x86

230fa8411f481fa79843fdd4b2faee00

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetUserDefaultLCID
lstrcpyW
GetCurrentDirectoryW
GetCommandLineA
GetFileAttributesW
GetLocaleInfoA
GetNumberFormatW
GetSystemDefaultLangID
GetProfileStringA
VirtualAllocEx
GetDateFormatW
SetEnvironmentVariableA
GetPriorityClass
GetModuleHandleA
lstrcpynW
GetCurrentDirectoryA
LoadLibraryA
lstrcpy
GetModuleHandleExA
DeactivateActCtx
CompareFileTime
GetVersionExA

user32

GetDlgItem
ReleaseDC
CharPrevExA
CharPrevA
DialogBoxParamA
AppendMenuW
IsWindow
SendDlgItemMessageA
EnableWindow
IsWindow
GetSysColorBrush
GetParent
GetDesktopWindow
LoadCursorW
LoadIconA
DeleteMenu
ShowWindow
LoadStringW
LoadIconW
GetDlgItemTextA
IsCharLowerA
EndDialog
CharNextExA
SetDlgItemInt
SetWindowLongW
SetWindowLongA
wsprintfW
CreateWindowExW
GetWindowLongW
MessageBoxA
CreateMenu
SendMessageW
GetFocus

gdi32

RealizePalette
StretchBlt
PatBlt
GetStretchBltMode
CreatePenIndirect
GetPath
GetStringBitmapA
SetDIBColorTable

Sections

.text
Size: 37KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 50KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

230fa8411f481fa79843fdd4b2faee00

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 37KB - Virtual size: 36KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 50KB - Virtual size: 56KB

.rsrc Size: 6KB - Virtual size: 5KB

.text
Size: 37KB - Virtual size: 36KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 50KB - Virtual size: 56KB

.rsrc
Size: 6KB - Virtual size: 5KB