166c9782ed307fcc6fdd65810ad6f05c_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

166c9782ed307fcc6fdd65810ad6f05c_JaffaCakes118
Size

88KB
MD5

166c9782ed307fcc6fdd65810ad6f05c
SHA1

51b79b58ce573b47c892edc8c5c15fbb5f67f933
SHA256

3a2ba9bed81bacce72abf768f7b3fe510c2a17c3ecf35a0b6869acba7ab90a00
SHA512

bfe8bb353e05b7d9ba03d31618f5429df93d78b65065c18df0546a02d6944225023a15d6a00f0692820b5496a9b8df87729b3041385ba13ec438cd1071d4be62
SSDEEP

1536:7dBzTV8UKJWj44TBbKBpP6NKXSCW8R9koEAFKJIgaquLyRnfB8C:7dBtVl44TBmBpHiCEJXJ3aqqyRfB8C

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
166c9782ed307fcc6fdd65810ad6f05c_JaffaCakes118

Files

166c9782ed307fcc6fdd65810ad6f05c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5b18201bbec1086c90684e06c816ed32

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

WaitMessage
RegisterClassExW
IsWindowEnabled
OemToCharBuffA
SendNotifyMessageW
ScreenToClient
TranslateMessage
UnpackDDElParam
ShowWindow
LoadBitmapW
SetWindowLongW
UnionRect
SetMenu
LoadCursorA
SetWindowPlacement
SetDlgItemInt
FindWindowExA
IsWindowVisible
PostThreadMessageA
MapVirtualKeyExW
SetActiveWindow
SetTimer
IsDlgButtonChecked
LoadStringW
IsCharAlphaW
PostMessageW
SetClipboardData
SetPropA
TranslateAcceleratorW
IsZoomed
SetRectEmpty
SetRect
MapWindowPoints
WindowFromDC
SetClassLongW
IsChild
IsWindow
RegisterClipboardFormatA
MoveWindow
InsertMenuA
SetMenuDefaultItem
ReuseDDElParam
RemovePropA
PtInRect

kernel32

FreeEnvironmentStringsA
GetLogicalDrives
CreateNamedPipeW
FindFirstChangeNotificationA
GetPrivateProfileIntA
FreeLibrary
GetPrivateProfileIntW
HeapReAlloc
_hwrite
GlobalUnWire
FlushConsoleInputBuffer

advapi32

InitializeSid
RegisterEventSourceA
AllocateAndInitializeSid
SetSecurityDescriptorSacl
StartServiceCtrlDispatcherW

gdi32

CreateRoundRectRgn
MoveToEx
LPtoDP
SelectPalette
DeleteDC
GetStockObject
GetRgnBox
GdiFlush
DeleteObject
CreateBitmap
GetTextColor
SetBkMode
ExtEscape
SetWinMetaFileBits
GetObjectA
RestoreDC
GetTextExtentPoint32A
GetPixel
CombineRgn
SetPixel
CreatePen
CreateDIBSection
SetViewportExtEx
GetObjectType
SetROP2
SetMapMode
GetObjectW
SetViewportOrgEx
ExtCreateRegion
GetTextAlign
CreateCompatibleDC
SetPixelV
PatBlt
CreateFontIndirectW
GetBrushOrgEx
CreateEllipticRgn
GetNearestPaletteIndex
GetTextFaceA
SetDIBColorTable
StretchBlt

Sections

.text
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5b18201bbec1086c90684e06c816ed32

Headers

File Characteristics

Imports

user32

kernel32

advapi32

gdi32

Sections

.text Size: 64KB - Virtual size: 63KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 4KB - Virtual size: 34KB

.rsrc Size: 12KB - Virtual size: 10KB

.text
Size: 64KB - Virtual size: 63KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 4KB - Virtual size: 34KB

.rsrc
Size: 12KB - Virtual size: 10KB