307a38f96828e94ee0743cf9d030642b_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

307a38f96828e94ee0743cf9d030642b_JaffaCakes118
Size

359KB
MD5

307a38f96828e94ee0743cf9d030642b
SHA1

77d57f94b727b1e10844e6a86ec57cb5274549bd
SHA256

e9afa9ecbe2f9df7e479fb820469c162b1594d1ee63d11f6d1d12fbbe3df7630
SHA512

67789b45f3fc8da946a8d17bfeb6963b544ead11a0eb3c135e6439a9afe113506809be27d0ddd57ae15793cb7dd693bb62445a24bda70596c45d3fe4b2396f24
SSDEEP

6144:eocoFt/M+lusOWcQJzWUtfMatbtM3sC/3v3wvwLjq9EWlyMBMwk1Sp6g0jq:Zjt5lusDXJztMatbO35f3wv2jqdBMwkn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
307a38f96828e94ee0743cf9d030642b_JaffaCakes118

Files

307a38f96828e94ee0743cf9d030642b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f317ddaa42d831fe899aa2b3082f543f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

user32

GetCapture
GetSysColorBrush
GetWindow
EnumChildWindows
SetTimer
IsWindow
SetRect
DefWindowProcA
GetMenuItemID
GetIconInfo
DefFrameProcA
GetTopWindow
GetSystemMenu
CheckMenuItem
IsIconic
IsDialogMessageA
DrawAnimatedRects
DrawIconEx
CreateIcon
GetClipboardData
EnumThreadWindows
GetMenu
SetClipboardData
ChildWindowFromPoint
GetScrollInfo
DefMDIChildProcA
ActivateKeyboardLayout
RemoveMenu
SetScrollInfo
GetKeyboardLayout
IsWindowEnabled
GetWindowTextA
EnableWindow
CharNextA
GetDlgItem
SystemParametersInfoA
GetForegroundWindow
RemovePropA
SetActiveWindow
SetForegroundWindow
SetWindowPlacement
SetParent
PtInRect
IsZoomed
FrameRect
TranslateMessage
MessageBoxA
CharUpperBuffA
AdjustWindowRectEx
LoadCursorA
CreateWindowExA
GetDesktopWindow
InsertMenuA
FindWindowA
DispatchMessageW
DispatchMessageA
GetMenuState
DrawMenuBar
UnregisterClassA
SetScrollPos
InsertMenuItemA
GetSubMenu
MapWindowPoints
ScreenToClient
SetCapture
DestroyWindow
MapVirtualKeyA
RegisterClipboardFormatA
PeekMessageA
PostMessageA
PeekMessageW

gdi32

GetDIBits
GetObjectA
GetDIBColorTable

advapi32

RegCreateKeyA

kernel32

IsBadReadPtr
ExitProcess
GetProcAddress
VirtualAlloc
LoadLibraryA
ExitThread
LocalAlloc
GetCommandLineA
lstrlenA
GetACP
GetModuleHandleA

msvcrt

memset
atan
strncmp
rand
atol
sqrt
strlen
log10

Sections

.text
Size: 63KB - Virtual size: 62KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1024B - Virtual size: 526B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RSRC7
Size: 1024B - Virtual size: 528B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RSRC2
Size: 285KB - Virtual size: 284KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.RSRC8
Size: 512B - Virtual size: 50B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.RSRC4
Size: 1024B - Virtual size: 919B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RSRC1
Size: 512B - Virtual size: 268B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RSRC9
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 992B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f317ddaa42d831fe899aa2b3082f543f

Headers

File Characteristics

Imports

user32

gdi32

advapi32

kernel32

msvcrt

Sections

.text Size: 63KB - Virtual size: 62KB

DATA Size: 1024B - Virtual size: 526B

.RSRC7 Size: 1024B - Virtual size: 528B

.RSRC2 Size: 285KB - Virtual size: 284KB

.RSRC8 Size: 512B - Virtual size: 50B

.RSRC4 Size: 1024B - Virtual size: 919B

.RSRC1 Size: 512B - Virtual size: 268B

.RSRC9 Size: 4KB - Virtual size: 4KB

.rsrc Size: 1024B - Virtual size: 992B

.text
Size: 63KB - Virtual size: 62KB

DATA
Size: 1024B - Virtual size: 526B

.RSRC7
Size: 1024B - Virtual size: 528B

.RSRC2
Size: 285KB - Virtual size: 284KB

.RSRC8
Size: 512B - Virtual size: 50B

.RSRC4
Size: 1024B - Virtual size: 919B

.RSRC1
Size: 512B - Virtual size: 268B

.RSRC9
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 1024B - Virtual size: 992B