3ce9196c694baeda2535f0d9d1509b6f_JaffaCakes118

General

Target

3ce9196c694baeda2535f0d9d1509b6f_JaffaCakes118
Size

161KB
MD5

3ce9196c694baeda2535f0d9d1509b6f
SHA1

b4d0c0a4942e83ce4ea313d5f69710af72eeb7e3
SHA256

d8ad40331d46f8ffde60b4a17578edcdea64ce991f3eeb4402c3137de5f916a8
SHA512

d0737d013ec22237d07cb557432f4d7a5eaf28a7b53b6a3d371d8998e2da043a8d1f2c03f9659572d6b198b27caa58be3f534f0f076de4366a25dea82a579016
SSDEEP

3072:BuO11nCSDv4j7sqEwdGHerIo7D5XaC10iqqYV6itlUKi8XV/S9A4cvJCJZ1DKEG:BT1/S7sVwdGHpoH5K0LslW8XV/SSv8Js

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3ce9196c694baeda2535f0d9d1509b6f_JaffaCakes118

Files

3ce9196c694baeda2535f0d9d1509b6f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ec7d0554173f8557bd6213ed41258442

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msimg32

AlphaBlend
TransparentBlt

gdiplus

GdipGetImagePixelFormat
GdipCreateBitmapFromFile
GdipGetImageWidth
GdipGetImageHeight
GdipDisposeImage

user32

FindWindowA
CreatePopupMenu
TrackPopupMenuEx
ClipCursor
DestroyMenu
RedrawWindow
GetDesktopWindow

winmm

timeGetTime

comctl32

ImageList_DragLeave
ImageList_DragMove
ImageList_DragEnter

advapi32

RegOpenKeyExW
RegCreateKeyW
RegCloseKey
RegSetValueW
RegSetValueExW
RegQueryValueExW
RegDeleteKeyW
RegEnumKeyExW

kernel32

FileTimeToDosDateTime
LocalAlloc
TransmitCommChar
GetVersionExA
EnumResourceNamesW
ExitProcess
LocalFree
ExitProcess
LoadLibraryW
GetModuleFileNameA

ole32

CoInitialize
CoUninitialize
StringFromGUID2
CoFreeUnusedLibraries
CoCreateInstance

gdi32

SelectObject
LineTo
CreateCompatibleDC
CreateDIBSection
SetStretchBltMode
BitBlt
GetObjectType
DeleteDC
CreatePen
StretchBlt
CreateDCW
CreateBitmap

Sections

.text
Size: 115KB - Virtual size: 115KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsr
Size: 512B - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ec7d0554173f8557bd6213ed41258442

Headers

File Characteristics

Imports

msimg32

gdiplus

user32

winmm

comctl32

advapi32

kernel32

ole32

gdi32

Sections

.text Size: 115KB - Virtual size: 115KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 42KB - Virtual size: 41KB

.rsr Size: 512B - Virtual size: 64KB

.text
Size: 115KB - Virtual size: 115KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 42KB - Virtual size: 41KB

.rsr
Size: 512B - Virtual size: 64KB