36ffd2d23ad128a9879753d50a7cf385_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

36ffd2d23ad128a9879753d50a7cf385_JaffaCakes118
Size

21KB
MD5

36ffd2d23ad128a9879753d50a7cf385
SHA1

56e33149b16c7fc02257b46eb9889fea5c06a940
SHA256

d95b10c53ef5cf3163b13c670a2fb60b98694d896b8e71e4763ca1a355d87941
SHA512

3b103a22c822478a06243aa0ecf2622b287f6c505d37275538e64480c3f8b02443ef89619eaea4de4951036e639d4418b3dee631d578cc9e084572c21a4674ec
SSDEEP

384:SfEO6ob/Tdi0u1AM/LyKVnB5KBGHqzHsvUbwuXuRi64turv6WqrezNWxaBi:SfEfoPPuZmK5r2GHYHZ6Wurvbqrezw8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
36ffd2d23ad128a9879753d50a7cf385_JaffaCakes118

Files

36ffd2d23ad128a9879753d50a7cf385_JaffaCakes118
.exe windows:4 windows x86 arch:x86

fea3984715661abc3ff059e514f6e17a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDlgItem
UnregisterClassA
EnableWindow
CharNextW
GetWindowRect
SendMessageW
CheckDlgButton
ShowWindow
CheckRadioButton
SetWindowLongW
SetWindowPos
IsDlgButtonChecked

ole32

CoTaskMemFree
CoTaskMemRealloc
CoCreateInstance
CoTaskMemAlloc

oleacc

AccessibleObjectFromWindow
AccessibleObjectFromEvent

advapi32

RegCreateKeyExW
RegCloseKey
RegEnumKeyExW
RegQueryInfoKeyW
RegOpenKeyExW
RegQueryValueExW
RegDeleteKeyW
RegQueryValueExA
RegDeleteValueW
RegSetValueExW
RegOpenKeyExA

shlwapi

StrCmpW

kernel32

EnterCriticalSection
GetTickCount
CreateProcessA
GetFullPathNameA
InterlockedDecrement
LeaveCriticalSection
ExpandEnvironmentStringsA
DeleteCriticalSection
ReadFile
WaitForMultipleObjects
VirtualAlloc
WriteFile
GetFileInformationByHandle
FlushFileBuffers
ReadConsoleInputA
SetEnvironmentVariableA
SetEndOfFile
PeekConsoleInputA
FreeConsole
GetModuleHandleA
LoadLibraryA
WaitForSingleObject
lstrcmpiA
InitializeCriticalSection
GetLastError
GetModuleFileNameA
IsBadReadPtr
SetConsoleWindowInfo
SetFileTime
SetFilePointer
GetShortPathNameA
SearchPathA
GetStdHandle
GetVolumeInformationA
GetConsoleCP
SetConsoleCP
SetConsoleScreenBufferSize
CreateDirectoryA
GetConsoleScreenBufferInfo
SetConsoleTitleA
SetConsoleOutputCP
MoveFileA
GetEnvironmentVariableA
IsBadCodePtr
SetLastError
GetConsoleOutputCP
AllocConsole
IsBadWritePtr
FreeLibrary

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 585B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

fea3984715661abc3ff059e514f6e17a

Headers

DLL Characteristics

File Characteristics

Imports

user32

ole32

oleacc

advapi32

shlwapi

kernel32

Sections

.text Size: 6KB - Virtual size: 6KB

.data Size: 10KB - Virtual size: 40KB

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 1024B - Virtual size: 585B

.text
Size: 6KB - Virtual size: 6KB

.data
Size: 10KB - Virtual size: 40KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 1024B - Virtual size: 585B