4239dd759e08152830c394a84b555f36_JaffaCakes118

General

Target

4239dd759e08152830c394a84b555f36_JaffaCakes118
Size

179KB
MD5

4239dd759e08152830c394a84b555f36
SHA1

342229d650bd2b0c6529f236e454896946d7672d
SHA256

c5b1dc53700b4dd82087114834647317bd0ef9c8ff1cee893297b4c724d08b9f
SHA512

4b62989ec6ab344c55aa8d72372c8b7ce5ccaadb60d897d6f51a84ffdc437a746758b9076eba2b044cf4d125dae1748fc2ad86b6ff7dbd9dcaf5fbcebe01fc41
SSDEEP

3072:bQsLE3w8HByEz8hKytkesOvUi2yGG11ZaUekI/fErOK/aDc4X:kaswYB58Jt0OiyGG7ZaHkImiDV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4239dd759e08152830c394a84b555f36_JaffaCakes118

Files

4239dd759e08152830c394a84b555f36_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0a92e1b8fcc3ee5c987090b208a75f19

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CopyImage
BlockInput
LoadCursorA
CloseWindow
AppendMenuA
CalcMenuBar
AlignRects
GetDlgItem
AppendMenuW
IsWindow
CopyIcon
GetFocus
IsMenu
InsertMenuA
GetMenu
DialogBoxParamA
DrawTextA
GetCursor

comctl32

ImageList_DragMove
ImageList_EndDrag
ImageList_DragLeave
ImageList_Replace
ImageList_Read
ImageList_LoadImage
ImageList_GetDragImage
ImageList_Create
ImageList_GetImageRect
ImageList_DrawEx
ImageList_Destroy
ImageList_AddIcon
ImageList_GetImageInfo
ImageList_DrawIndirect
ImageList_DragEnter
ImageList_ReplaceIcon
ImageList_Remove
ImageList_LoadImageW
ImageList_Merge

kernel32

HeapAlloc
GlobalFree
GetFileAttributesA
GetLastError
GetStdHandle
GetFileType
CloseHandle
Sleep
lstrcatA
GetCommandLineA
GetDateFormatA
GetModuleHandleA
lstrcmpiA
lstrcmpA
lstrlenA
lstrcpynA
GetCPInfo
lstrcpyA
FreeLibrary
GetStringTypeW

advapi32

RegDeleteKeyW
RegCreateKeyExA
RegLoadKeyW
RegDeleteKeyA
RegEnumValueA
RegCreateKeyExW
RegEnumKeyA
RegGetKeySecurity
RegFlushKey
RegEnumKeyExA
RegEnumKeyExW
RegLoadKeyA
RegOpenKeyExA
RegReplaceKeyA
RegQueryInfoKeyW
RegQueryValueExW
RegEnumValueW
RegOpenKeyA
RegQueryInfoKeyA
RegEnumKeyW

Sections

.sFuId
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.EiTt
Size: 157KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.yyws
Size: 2KB - Virtual size: 196KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rcpoR
Size: - Virtual size: 2KB

IMAGE_SCN_MEM_READ

.rdZwZ
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0a92e1b8fcc3ee5c987090b208a75f19

Headers

File Characteristics

Imports

user32

comctl32

kernel32

advapi32

Sections

.sFuId Size: 12KB - Virtual size: 11KB

.EiTt Size: 157KB - Virtual size: 156KB

.yyws Size: 2KB - Virtual size: 196KB

.rcpoR Size: - Virtual size: 2KB

.rdZwZ Size: 3KB - Virtual size: 3KB

.sFuId
Size: 12KB - Virtual size: 11KB

.EiTt
Size: 157KB - Virtual size: 156KB

.yyws
Size: 2KB - Virtual size: 196KB

.rcpoR
Size: - Virtual size: 2KB

.rdZwZ
Size: 3KB - Virtual size: 3KB