1631ed19bc1b2a911feb2b820ed589a9_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

1631ed19bc1b2a911feb2b820ed589a9_JaffaCakes118
Size

52KB
MD5

1631ed19bc1b2a911feb2b820ed589a9
SHA1

6a953b1b9b925c4894690bf5b508ec3f9ae0c65e
SHA256

bc07b3e5e4cb0f120fc7c10d17e50c82a4893129c5d706a3539d2c164fed0738
SHA512

47a6daea4f7b28508a448e91c9b652cc95f89ed03137b435492ff7622b0c3307fdcb75bab84db2960aaeff27a0e289012d2ce222ddc57ecad14e1e1158d9bd13
SSDEEP

768:+ViEVMeneEzzEE14hdz4BNh6XC4buwPptHMcYWMKBfHj2yxmipRW56LDwxl9:IKqeEPEE1ozKNcXTusi/WMGJrW5Kwxl9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1631ed19bc1b2a911feb2b820ed589a9_JaffaCakes118

Files

1631ed19bc1b2a911feb2b820ed589a9_JaffaCakes118
.exe windows:5 windows x86 arch:x86

f40430c9b2190451dc678e12f301cfc4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
GetCommandLineW
GetSystemDirectoryA
lstrcatA
VirtualAlloc

user32

DestroyWindow
DialogBoxIndirectParamA
DialogBoxParamA
DispatchMessageA
DrawMenuBar
DrawTextA
EnableMenuItem
EnableWindow
EndDialog
EndPaint
FillRect
FindWindowA
GetCursorPos
GetDC
GetDesktopWindow
GetDlgItem
GetDlgItemTextA
GetKeyNameTextA
GetMenu
GetMessageA
GetParent
GetSystemMetrics
GetWindowLongA
GetWindowRect
GetWindowTextA
InvalidateRect
IsIconic
IsWindowVisible
DeleteMenu
LoadCursorA
LoadIconA
LoadStringA
MapVirtualKeyA
MessageBeep
MessageBoxA
MoveWindow
PeekMessageA
PostMessageA
PostQuitMessage
RedrawWindow
RegisterClassA
RegisterWindowMessageA
ReleaseCapture
ReleaseDC
SendDlgItemMessageA
SendMessageA
SetCapture
SetCursor
SetCursorPos
SetFocus
SetForegroundWindow
SetMenu
SetWindowLongA
SetWindowPos
SetWindowTextA
ShowWindow
TranslateMessage
UnregisterClassA
UpdateWindow
WinHelpA
wsprintfA
RegisterClassExA
DefWindowProcA
CreateWindowExA
CheckMenuItem
ChangeDisplaySettingsA
BeginPaint
LoadBitmapA

gdi32

GetStockObject

advapi32

RegOpenKeyW

shell32

ShellAboutA

Sections

.text
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 86KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ata2
Size: 512B - Virtual size: 112B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 53KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 810B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f40430c9b2190451dc678e12f301cfc4

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

Sections

.text Size: 14KB - Virtual size: 14KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 86KB - Virtual size: 85KB

.ata2 Size: 512B - Virtual size: 112B

.rsrc Size: 53KB - Virtual size: 52KB

.reloc Size: 1024B - Virtual size: 810B

.text
Size: 14KB - Virtual size: 14KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 86KB - Virtual size: 85KB

.ata2
Size: 512B - Virtual size: 112B

.rsrc
Size: 53KB - Virtual size: 52KB

.reloc
Size: 1024B - Virtual size: 810B