15d938f864bee19d205cf5c704d7edbe_JaffaCakes118

General

Target

15d938f864bee19d205cf5c704d7edbe_JaffaCakes118
Size

164KB
MD5

15d938f864bee19d205cf5c704d7edbe
SHA1

4ee7371a5ca3cf06710b7ad958a4d549ef1f60f2
SHA256

dfe4104718f31c701d3bc51499009371ee42d0a6cee5dde2245266a6f32480e7
SHA512

965cef9466c7adc5c2d63c2e947bc7148a5fe074967bd1e90f5547261322be99b1fe1e18b00dea0d9851c1b6b6887264e839fa0f6e7b7581311ce6e92e6a7996
SSDEEP

3072:76/RXbQB1TY1a4bJGWHdPI6jvoY3axwjE5B1MpV2Voul1Tq:76/dE3TiJPHjoSaxr5BWYLTq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
15d938f864bee19d205cf5c704d7edbe_JaffaCakes118

Files

15d938f864bee19d205cf5c704d7edbe_JaffaCakes118
.exe windows:4 windows x86 arch:x86

39c75966a77c948ef199f96d652f82a3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdiplus

GdipGetImageHeight
GdipGetImagePixelFormat
GdipGetImageWidth
GdipCreateBitmapFromFile
GdipDisposeImage

user32

TrackPopupMenuEx
RedrawWindow
DestroyMenu
ClipCursor
FindWindowA
CreatePopupMenu
GetDesktopWindow

kernel32

FileTimeToDosDateTime
LoadLibraryW
TransmitCommChar
LocalAlloc
EnumResourceNamesW
ExitProcess
GetVersionExA
LocalFree
ExitProcess
GetModuleFileNameA

msimg32

AlphaBlend
TransparentBlt

comctl32

ImageList_DragMove
ImageList_DragLeave
ImageList_DragEnter

ole32

StringFromGUID2
CoInitialize
CoFreeUnusedLibraries
CoUninitialize
CoCreateInstance

advapi32

RegDeleteKeyW
RegCloseKey
RegCreateKeyW
RegSetValueW
RegOpenKeyExW
RegSetValueExW
RegQueryValueExW
RegEnumKeyExW

winmm

timeGetTime

gdi32

StretchBlt
CreateDCW
CreateDIBSection
SetStretchBltMode
DeleteDC
CreateCompatibleDC
GetObjectType
LineTo
SelectObject
CreatePen
BitBlt
CreateBitmap

Sections

.text
Size: 117KB - Virtual size: 116KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsr
Size: 512B - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

39c75966a77c948ef199f96d652f82a3

Headers

File Characteristics

Imports

gdiplus

user32

kernel32

msimg32

comctl32

ole32

advapi32

winmm

gdi32

Sections

.text Size: 117KB - Virtual size: 116KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 44KB - Virtual size: 43KB

.rsr Size: 512B - Virtual size: 64KB

.text
Size: 117KB - Virtual size: 116KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 44KB - Virtual size: 43KB

.rsr
Size: 512B - Virtual size: 64KB