16a90c88f18c23e253c7eac9f71ebd2a_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

16a90c88f18c23e253c7eac9f71ebd2a_JaffaCakes118
Size

247KB
MD5

16a90c88f18c23e253c7eac9f71ebd2a
SHA1

03af726df7beeb26fa0484368a54bef2395f741c
SHA256

09b151cb8762aa974f8ccd31fb511ff351158367c49f8161c50857c24fa76d4c
SHA512

c823f8e32a0690602efc75a6a3fd37d33d3ce1071088759ab6fed488ec7f2bc0c7c1ef09cbda3c81aa8dad1297a2676a3d2d7c93131be2e4c013b1f86452479d
SSDEEP

6144:b1At9BrxHS28w6zfENsaSSlip2v2UiSyPR1moAm:b1At95xHZafEyFwv2mwDL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
16a90c88f18c23e253c7eac9f71ebd2a_JaffaCakes118

Files

16a90c88f18c23e253c7eac9f71ebd2a_JaffaCakes118
.dll windows:4 windows x86 arch:x86

fc7ecdc2a0edc76bb750a5da087d073a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetLastError
ExitProcess
GetModuleHandleA
lstrlenW
GetOEMCP
LoadLibraryExA
VirtualAlloc
GetCommandLineW
GetACP
LoadLibraryA
ExitThread
IsBadHugeReadPtr
GetProcAddress

comdlg32

FindTextA
GetOpenFileNameA
ChooseColorA

user32

GetWindowPlacement
IsZoomed
GetTopWindow
GetWindowLongW
KillTimer
InsertMenuItemA
GetWindow
IsWindowVisible
IsWindowUnicode
GetSysColorBrush
GetWindowDC
GetWindowLongA
InsertMenuA
IsWindow
IsRectEmpty
GetSubMenu
GetWindowThreadProcessId
IsWindowEnabled
IsIconic
IsDialogMessageA
GetScrollRange
GetWindowRect
GetWindowTextA
IntersectRect
IsChild
InvalidateRect
GetSystemMenu
InflateRect
GetSysColor
IsDialogMessageW

Sections

CODE
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 159KB - Virtual size: 158KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bdata
Size: 512B - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

DATA
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ddata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 836B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fc7ecdc2a0edc76bb750a5da087d073a

Headers

File Characteristics

Imports

kernel32

comdlg32

user32

Sections

CODE Size: 64KB - Virtual size: 64KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 159KB - Virtual size: 158KB

.bdata Size: 512B - Virtual size: 76KB

DATA Size: 9KB - Virtual size: 8KB

.ddata Size: 2KB - Virtual size: 1KB

.rsrc Size: 1024B - Virtual size: 836B

.reloc Size: 2KB - Virtual size: 1KB

CODE
Size: 64KB - Virtual size: 64KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 159KB - Virtual size: 158KB

.bdata
Size: 512B - Virtual size: 76KB

DATA
Size: 9KB - Virtual size: 8KB

.ddata
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 1024B - Virtual size: 836B

.reloc
Size: 2KB - Virtual size: 1KB