123a0c8592761a314fc5ff536b448062_JaffaCakes118

General

Target

123a0c8592761a314fc5ff536b448062_JaffaCakes118
Size

118KB
MD5

123a0c8592761a314fc5ff536b448062
SHA1

4284a38340d09f2e8c977ddc3acaa415bc999f9d
SHA256

09b3642e3d3a07e46f7d937661f3e953893585a505d12e82f7d1a25426d830c8
SHA512

a99cd78fbb3890564ec01a07c16ee8ff2c59156b7a260315a5627edf1595867d67c4e8cc0387ccadc5e0ed9310a3933b61463abbdc058e1f6b0de6df13833fbd
SSDEEP

3072:LLnKby7FA2MxS4SSUe5o2vZmdNaCbMdCYQeMNu0rO8l:XnVA2MFye5ZYNaCboC/Njb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
123a0c8592761a314fc5ff536b448062_JaffaCakes118

Files

123a0c8592761a314fc5ff536b448062_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5fa7d723a7e7d221df32cac7cf0161da

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTempPathW
SleepEx
HeapCreate
GetFileAttributesW
GetModuleFileNameW
GetStartupInfoA
GetVersion
lstrcmp
GetVolumeInformationA
CreateEventW
OpenMutexW
CreateNamedPipeA
SetCurrentDirectoryW
CreateFiber
lstrcmpiW
FatalAppExitA
GetTempFileNameA
RemoveDirectoryA
GetProcAddress
GetAtomNameA
CreateNamedPipeW
OpenEventA
MoveFileW
GetAtomNameW
GetDiskFreeSpaceA
DosDateTimeToFileTime

user32

SetWindowTextW
GetParent
CharNextW
GetIconInfo
GetFocus
CharPrevW
DialogBoxIndirectParamW
CreatePopupMenu
ShowCaret
LoadBitmapW
IsMenu
LoadCursorW
WaitMessage
MonitorFromRect
GetKeyboardType
CreateWindowExW
SetDlgItemTextA
CharLowerA
EndPaint

gdi32

GetBkColor
GetObjectW
CreateDIBSection
GetDIBits

advapi32

RegRestoreKeyA

comdlg32

ChooseFontA
GetOpenFileNameW
ReplaceTextW
GetOpenFileNameA

shell32

SHGetDiskFreeSpaceA

Sections

.text
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 326B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5fa7d723a7e7d221df32cac7cf0161da

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

comdlg32

shell32

Sections

.text Size: 23KB - Virtual size: 23KB

.data Size: 64KB - Virtual size: 64KB

.idata Size: 2KB - Virtual size: 1KB

.rsrc Size: 27KB - Virtual size: 26KB

.reloc Size: 512B - Virtual size: 326B

.text
Size: 23KB - Virtual size: 23KB

.data
Size: 64KB - Virtual size: 64KB

.idata
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 27KB - Virtual size: 26KB

.reloc
Size: 512B - Virtual size: 326B