36f617ba7bd4775a71eb4e96aa41f42f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

36f617ba7bd4775a71eb4e96aa41f42f_JaffaCakes118
Size

208KB
MD5

36f617ba7bd4775a71eb4e96aa41f42f
SHA1

a26aec8c62f76f379a755978b1088b6c005e3003
SHA256

d7d238baeb04e84a805c5f10308cb984dfaaadb929c8aa49310780800350a102
SHA512

6b679fc9f431344886f08a8162c6c9bba9d4ca3d00683b076839df438a7f984cfcc695c7cc4474258beb227821909e902e5ba24aa39c644b4e1c6d3f9aeb1563
SSDEEP

6144:/Nr1EhZmqu+nyAydOkk2Ek6YcD/cJuB8zkxw:VSf9127XcD1B8zp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
36f617ba7bd4775a71eb4e96aa41f42f_JaffaCakes118

Files

36f617ba7bd4775a71eb4e96aa41f42f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4d45af994e0c8edf068e92a2e04b1a66

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetDIBColorTable
GetBkColor
GetBkMode
GetTextColor
GetCurrentPositionEx

kernel32

SetFilePointer
LoadLibraryA
SetThreadLocale
VirtualAllocEx
SetLastError

user32

CharUpperA
IsMenu
GetDC
SetClassLongA
GetKeyboardLayout
EmptyClipboard
DestroyMenu
PostQuitMessage
GetWindowDC
GetFocus
PeekMessageA
BeginPaint
CheckMenuItem
wsprintfA
DestroyIcon
EnableMenuItem
CharUpperBuffA
GetScrollPos
CreatePopupMenu
OpenClipboard
GetWindowThreadProcessId
EnumChildWindows
GetDlgItem
GetKeyboardLayoutList
IsChild
EqualRect
DefFrameProcA
DrawIconEx
IsWindowEnabled
RegisterClassA
SetPropA
GetDCEx
DrawEdge
KillTimer
AdjustWindowRectEx
SetCursor
GetWindowPlacement
CreateMenu
GetSystemMetrics
IsRectEmpty
CreateWindowExA
MapWindowPoints
PeekMessageW
UpdateWindow
GetMenuItemID
SetWindowLongW
GetMenu
GetCursorPos
ActivateKeyboardLayout
LoadStringA
SetRect
SetClipboardData
IsWindowVisible
OemToCharA
SetWindowPos
EnableWindow
SetActiveWindow
WindowFromPoint
GetKeyboardLayoutNameA
GetCapture
SystemParametersInfoA
DefMDIChildProcA
DestroyCursor
GetMenuItemInfoA
GetActiveWindow
InvalidateRect
MoveWindow
RemovePropA
InflateRect
GetWindowLongA
GetWindowLongW
IsCharUpperA
SendMessageA
TranslateMessage
DefWindowProcA
DeleteMenu
MsgWaitForMultipleObjects
DestroyWindow
MessageBoxA
GetClassNameA
GetKeyState
GetCursor
IsWindow
SetWindowLongA
GetSysColorBrush
GetSystemMenu
GetWindowTextLengthA
PostMessageA
GetDesktopWindow
FindWindowA
GetKeyboardType
ClientToScreen
UnhookWindowsHookEx
IntersectRect
SetMenuItemInfoA
ShowWindow
DrawFrameControl
CharNextA
EnumThreadWindows
GetWindow
ChildWindowFromPoint
LoadIconA
EnumWindows
DrawMenuBar
RedrawWindow
SetForegroundWindow
IsWindowUnicode
IsCharLowerA
UnregisterClassA
DispatchMessageW
GetPropA
SetWindowTextA
GetSubMenu

Exports

Exports

_Q1uQkD@16
_qH587h@12
_sgIbR0@8
_2cLl1G@20
_rvhL4johR@12
DYMhBc2jShJIL8@12
2_u7XV
_ceryjSh5in@24
8_RYat6gHd9xw0

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 190KB - Virtual size: 190KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4d45af994e0c8edf068e92a2e04b1a66

Headers

File Characteristics

Imports

gdi32

kernel32

user32

Exports

Exports

Sections

.text Size: 10KB - Virtual size: 9KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 190KB - Virtual size: 190KB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 10KB - Virtual size: 9KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 190KB - Virtual size: 190KB

.rsrc
Size: 2KB - Virtual size: 1KB