115cb1c12dface7508952f7b147b667e_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

115cb1c12dface7508952f7b147b667e_JaffaCakes118
Size

18KB
MD5

115cb1c12dface7508952f7b147b667e
SHA1

d6168402c07b44e17ead79a1068944ae3462842c
SHA256

f44a3de38981562a81661aa37e92cbd1c4fe23c7aed1d7bddca24fe0fd2898fd
SHA512

6e3dfbc40d268d02fc9281fc7a3938048eb2a4f5f0d34794a8d5f619ae9fcbfea45b815319cc5c194118a19c058649f83ca35dd6788b7c1a44cc05bafa51ac15
SSDEEP

384:JmVdc1jzXrTcbHGzTVW957ZagmpTtjUC0mwaiDtoXl7BlmAYmkBbeXZABfig:adO/XKGXw95tagE0qiu7fYmkBKwi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
115cb1c12dface7508952f7b147b667e_JaffaCakes118

Files

115cb1c12dface7508952f7b147b667e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8eb0e41e3fd3c18deeafffafeca073ed

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DefWindowProcW
ScreenToClient
wsprintfW
ReleaseDC
ShowWindow
GetDC
TranslateMessage
MessageBoxA
GetSystemMetrics
EndDialog
GetClientRect
GetWindowRect
LoadStringW
EnableWindow
GetDlgItem

advapi32

GetUserNameA
SetFileSecurityW
RegCreateKeyExA
RegOpenKeyExA
RegSetValueExA
RegQueryValueExA
RegCreateKeyExW
RegQueryValueExW
RegCloseKey
RegDeleteKeyW
RegSetValueExW
RegOpenKeyExW

kernel32

FindResourceExW
LoadLibraryA
DeleteCriticalSection
GetSystemTimeAsFileTime
GetTickCount
FindResourceExA
WideCharToMultiByte
GetLastError
FreeLibrary
QueryPerformanceCounter
CloseHandle
SetUnhandledExceptionFilter
GetCurrentThreadId
Sleep
TerminateProcess
EnterCriticalSection
ExitProcess
GetCurrentProcessId
VirtualAlloc
MultiByteToWideChar
AddAtomW
GetProcAddress
FindResourceW
UnhandledExceptionFilter
GetCurrentProcess
LeaveCriticalSection

msvcrt

_atoldbl
_assert
_cabs
_chdir
_cgetws
_access
_atoi64
_cgets
_c_exit
_close
_chgsign
_beep

comctl32

CreateMappedBitmap
ShowHideMenuCtl
CreateToolbar
ImageList_AddMasked
DSA_GetItemPtr
ImageList_Remove
ImageList_GetImageInfo
GetEffectiveClientRect
MenuHelp
ImageList_LoadImageA

Sections

.textbss
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8eb0e41e3fd3c18deeafffafeca073ed

Headers

File Characteristics

Imports

user32

advapi32

kernel32

msvcrt

comctl32

Sections

.textbss Size: - Virtual size: 8KB

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 11KB - Virtual size: 11KB

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 1KB - Virtual size: 1KB

.textbss
Size: - Virtual size: 8KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 11KB - Virtual size: 11KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 1KB - Virtual size: 1KB