3a76581d0a6ba287b2b60af32bc71eac_JaffaCakes118

General

Target

3a76581d0a6ba287b2b60af32bc71eac_JaffaCakes118
Size

186KB
MD5

3a76581d0a6ba287b2b60af32bc71eac
SHA1

b6681f1c5b0c03b530911bd0f41fccc6dd7025e1
SHA256

f5cdcc1e8355799ec28f00efbf9ab82ed6f0ed44d73bb2e086b9db92232486c1
SHA512

d01b6c2dce7d77eefc3fd84c649e88e3720384846ab0e2245b8e7982621c0546cac762508e4edd0684eaca9336ef7c9283a9cb91fde9ef8b5fa6aa3164058e4c
SSDEEP

3072:tcinxCKg91wF0choJXIWApPP4hB94ukKHg2mU4dgr8Rh0:TnIZ1w+cD4rSuvgzdgr8R6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3a76581d0a6ba287b2b60af32bc71eac_JaffaCakes118

Files

3a76581d0a6ba287b2b60af32bc71eac_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ac5d959c0bc568912a5287c39b5dfefc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

user32

ChildWindowFromPoint
CheckMenuItem
CharUpperBuffA
wsprintfA
LoadIconA
CreateMenu
GetWindow

comctl32

ImageList_Write
ImageList_GetBkColor
ImageList_Destroy
ImageList_DrawEx
ImageList_Remove
ImageList_Read
ImageList_DragShowNolock
ImageList_Add
ImageList_Create
ImageList_Draw

advapi32

RegOpenKeyExA
RegEnumValueA

shlwapi

SHGetValueA
PathIsContentTypeA
PathGetCharTypeA

oleaut32

SysAllocStringLen
GetErrorInfo
SafeArrayGetUBound

shell32

DragQueryFileA
SHGetFileInfoA
Shell_NotifyIconA

kernel32

VirtualAllocEx
GetCurrentThreadId
GetCommandLineA
GetCPInfo
GlobalAlloc
GetCurrentProcessId

Exports

Exports

_73@8

Sections

.text
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 141KB - Virtual size: 208KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1024B - Virtual size: 997B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ac5d959c0bc568912a5287c39b5dfefc

Headers

File Characteristics

Imports

user32

comctl32

advapi32

shlwapi

oleaut32

shell32

kernel32

Exports

Exports

Sections

.text Size: 25KB - Virtual size: 24KB

.data Size: 141KB - Virtual size: 208KB

.tls Size: 1024B - Virtual size: 997B

.rdata Size: 1KB - Virtual size: 1KB

.idata Size: 1KB - Virtual size: 1KB

.rsrc Size: 15KB - Virtual size: 15KB

.text
Size: 25KB - Virtual size: 24KB

.data
Size: 141KB - Virtual size: 208KB

.tls
Size: 1024B - Virtual size: 997B

.rdata
Size: 1KB - Virtual size: 1KB

.idata
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 15KB - Virtual size: 15KB