1375ec7c0255589e8a80c4688d3ebdcb_JaffaCakes118

General

Target

1375ec7c0255589e8a80c4688d3ebdcb_JaffaCakes118
Size

188KB
MD5

1375ec7c0255589e8a80c4688d3ebdcb
SHA1

29c3187b140db9bc292a2075689dc10b10b14f92
SHA256

02b7275cdf392b5c86b96277902702abdb1938ff79f7a1df8efb993c3f278b63
SHA512

b6b32ed8b554883888ccc67cde8673e7e349d95889ca54a51b1bdb1638824fd992278e66efdad8c2f61add8f5a14c3ac3a1a3b407cc4655146638aeb801a2c37
SSDEEP

3072:aCOj22kkJaTif3X/a+MG9Fu1Zl2G6ZEzjm8RiaAR8UexogRntMx5BH:TOHkkETE3X/a+M9l23eS8FoInI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1375ec7c0255589e8a80c4688d3ebdcb_JaffaCakes118

Files

1375ec7c0255589e8a80c4688d3ebdcb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

277f015d31783acdd9b882792346a42c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitThread
GetACP
VirtualAlloc
GetLastError
lstrlenA
IsBadHugeReadPtr
LoadLibraryA
GetModuleHandleA
ExitProcess
GetCommandLineW
GetProcAddress
LoadLibraryExA
GetModuleHandleW
lstrlenW

user32

GetSysColor
InvalidateRect
GetWindow
IsWindowEnabled
GetWindowTextA
KillTimer
GetSubMenu
GetWindowLongA
IsChild
InsertMenuItemA
GetSysColorBrush
IsDialogMessageW
GetTopWindow
GetWindowLongW
IsDialogMessageA
IsZoomed
GetSystemMenu
InsertMenuA
GetWindowPlacement
IsRectEmpty
GetWindowRect
IsWindowVisible
IsIconic
InflateRect
GetWindowThreadProcessId
IsWindowUnicode
IntersectRect
GetWindowDC
GetScrollRange
IsWindow

comctl32

ImageList_Add
ImageList_Create
ImageList_Remove
ImageList_Read
ImageList_Destroy
ImageList_DragShowNolock

Sections

CODE
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.hdata
Size: 1024B - Virtual size: 832B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 7KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 836B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

277f015d31783acdd9b882792346a42c

Headers

File Characteristics

Imports

kernel32

user32

comctl32

Sections

CODE Size: 52KB - Virtual size: 52KB

.rdata Size: 7KB - Virtual size: 7KB

.data Size: 116KB - Virtual size: 116KB

.hdata Size: 1024B - Virtual size: 832B

DATA Size: 7KB - Virtual size: 99KB

.bdata Size: 1KB - Virtual size: 1KB

.rsrc Size: 1024B - Virtual size: 836B

CODE
Size: 52KB - Virtual size: 52KB

.rdata
Size: 7KB - Virtual size: 7KB

.data
Size: 116KB - Virtual size: 116KB

.hdata
Size: 1024B - Virtual size: 832B

DATA
Size: 7KB - Virtual size: 99KB

.bdata
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 1024B - Virtual size: 836B