3bac19637670c14da5bbbf61b75ac908_JaffaCakes118

General

Target

3bac19637670c14da5bbbf61b75ac908_JaffaCakes118
Size

79KB
MD5

3bac19637670c14da5bbbf61b75ac908
SHA1

846f7fe61544ed9057a854e70f77b348d0339481
SHA256

7030451b001dd322e52b2969b3cdf21a4a625ba2089c6f87b1147f2d89dfac1d
SHA512

ade829924c9d14cd16212277ef94e0fa5450bdaea87b767d2258d66bf9fc73698b4e02dba29323984beb9051c5ea9786013f6c7ea2acae83441b1b416a335498
SSDEEP

1536:9LQKy1G48dSXbqiwQE2v0Fxi3bNvlC/vvYO3XgVqBkPESXYJwZuAAZ:9L94sScTOT3bKvQ46iSPM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3bac19637670c14da5bbbf61b75ac908_JaffaCakes118

Files

3bac19637670c14da5bbbf61b75ac908_JaffaCakes118
.exe windows:4 windows x86 arch:x86

230fa8411f481fa79843fdd4b2faee00

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetUserDefaultLCID
lstrcpyW
GetCurrentDirectoryW
GetCommandLineA
GetFileAttributesW
GetLocaleInfoA
GetNumberFormatW
GetSystemDefaultLangID
GetProfileStringA
VirtualAllocEx
GetDateFormatW
SetEnvironmentVariableA
GetPriorityClass
GetModuleHandleA
lstrcpynW
GetCurrentDirectoryA
LoadLibraryA
lstrcpy
GetModuleHandleExA
DeactivateActCtx
CompareFileTime
GetVersionExA

user32

GetDlgItem
ReleaseDC
CharPrevExA
CharPrevA
DialogBoxParamA
AppendMenuW
IsWindow
SendDlgItemMessageA
EnableWindow
IsWindow
GetSysColorBrush
GetParent
GetDesktopWindow
LoadCursorW
LoadIconA
DeleteMenu
ShowWindow
LoadStringW
LoadIconW
GetDlgItemTextA
IsCharLowerA
EndDialog
CharNextExA
SetDlgItemInt
SetWindowLongW
SetWindowLongA
wsprintfW
CreateWindowExW
GetWindowLongW
MessageBoxA
CreateMenu
SendMessageW
GetFocus

gdi32

RealizePalette
StretchBlt
PatBlt
GetStretchBltMode
CreatePenIndirect
GetPath
GetStringBitmapA
SetDIBColorTable

Sections

.text
Size: 37KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 50KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

230fa8411f481fa79843fdd4b2faee00

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 37KB - Virtual size: 36KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 50KB - Virtual size: 56KB

.rsrc Size: 6KB - Virtual size: 5KB

.text
Size: 37KB - Virtual size: 36KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 50KB - Virtual size: 56KB

.rsrc
Size: 6KB - Virtual size: 5KB