16c01c145ec29f0c4bcce8b5f585391f_JaffaCakes118

General

Target

16c01c145ec29f0c4bcce8b5f585391f_JaffaCakes118
Size

183KB
MD5

16c01c145ec29f0c4bcce8b5f585391f
SHA1

0767c746303a5a3d28d212ea57671781b0a189f5
SHA256

b3a38d2271d3862c6e67dae5da1ad308525070a584b9c1988bdfa99b8d6f7ed8
SHA512

1b2a90327305cc1ab899f58d4443a6d61e6994626a65da123eaec5024e382bd9350d9d77d916ddb69e5dc36174ad6cbf80a8ffb08044b98cffa28c1b4a63489d
SSDEEP

3072:HylSUfqeiU7ccrxmE+tRuJTwwCCAJ7zpveTqbrO6uaNSzKCUnbjjDBZyX3dtzzme:SgNen7ccrW6CCU7zpGmKpaeKC8bjjDBI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
16c01c145ec29f0c4bcce8b5f585391f_JaffaCakes118

Files

16c01c145ec29f0c4bcce8b5f585391f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

bc00be3d215854f89512d03d352459b1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

ChildWindowFromPoint
CallNextHookEx
RegisterClassW
SetWindowsHookExW
SetWindowPos
ClipCursor
DestroyIcon
SetClipboardData
DrawEdge
IsClipboardFormatAvailable
DefWindowProcW
GetSysColorBrush
RealGetWindowClass
DestroyCursor
ToAscii
UnhookWindowsHookEx
SetScrollRange
EmptyClipboard
WinHelpW
GetSysColor

rpcrt4

RpcStringBindingComposeA
NdrClientCall
RpcBindingSetAuthInfoA
RpcBindingFromStringBindingA
RpcStringFreeA

comdlg32

GetFileTitleA

kernel32

GetFileType
CreateFiber
GetFileAttributesA
GetProfileStringW
FlushFileBuffers
LockFile
IsDBCSLeadByte
GetUserDefaultLangID
TerminateProcess
LocalAlloc
GetVolumeInformationW
EnumResourceNamesA
FindResourceExA
VerLanguageNameW
FlushFileBuffers
GetFileTime
SetEndOfFile
FileTimeToSystemTime
GetSystemTime
SearchPathW
CompareStringW
UnlockFile
FileTimeToLocalFileTime
GetVersionExW
GetSystemDirectoryW

Sections

.text
Size: 156KB - Virtual size: 156KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bc00be3d215854f89512d03d352459b1

Headers

File Characteristics

Imports

user32

rpcrt4

comdlg32

kernel32

Sections

.text Size: 156KB - Virtual size: 156KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 22KB - Virtual size: 22KB

.tls Size: 512B - Virtual size: 76KB

.text
Size: 156KB - Virtual size: 156KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 22KB - Virtual size: 22KB

.tls
Size: 512B - Virtual size: 76KB