3cf35461d7d146b8bed4daa7910d1552_JaffaCakes118

General

Target

3cf35461d7d146b8bed4daa7910d1552_JaffaCakes118
Size

175KB
MD5

3cf35461d7d146b8bed4daa7910d1552
SHA1

84ab7feb840a8ee943ba4da33a71bbead853da11
SHA256

f36d2c3be88439c840f9f20ffd34aa74226563ae0db42268f0264bbfdb08ae94
SHA512

e409856ce79f9cb59c6ab417a0d7050941042c3bf7401d651592afee42101740c89b7007053853558aaa4e468175447bed795233c0f46ecf357805d471b7d814
SSDEEP

3072:bl8mc25spl9tL5swN+LXKb2TGixuhPtcWxhNK/1iVXrhgrsFQ+Af:995spHsgrvichdLc/1iVbGrsFQRf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3cf35461d7d146b8bed4daa7910d1552_JaffaCakes118

Files

3cf35461d7d146b8bed4daa7910d1552_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b5cbefe4fde82b39049c7424df7ab7e5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDC
LoadMenuA
CopyRect
GetWindowTextLengthA
BlockInput
DialogBoxParamA
CreateIcon
DrawTextW
EndDialog
CalcMenuBar
AlignRects
CloseWindow
DrawTextA
AppendMenuW
DialogBoxParamW
GetFocus
GetDlgItem
DrawIcon
DrawIconEx
InsertMenuA

kernel32

GetStdHandle
GetCommandLineA
GetStdHandle
FreeLibrary
GetStdHandle
GetFileType
GetStdHandle
GetStringTypeW
GetStdHandle
GetLastError
GetStdHandle
HeapFree
GetStdHandle
Sleep
GetStdHandle
GetDateFormatA

comctl32

ImageList_DrawEx
ImageList_GetIcon
ImageList_Replace
ImageList_AddMasked
ImageList_LoadImageA
ImageList_Remove
ImageList_BeginDrag
ImageList_Merge
ImageList_Draw
ImageList_DragMove
ImageList_Read
ImageList_GetIconSize
ImageList_GetImageRect
ImageList_GetImageCount
ImageList_AddIcon
ImageList_Copy
ImageList_ReplaceIcon

advapi32

RegEnumKeyA
RegLoadKeyW
RegDeleteKeyA
RegQueryValueExA
RegEnumKeyExW
RegEnumKeyExA
RegOpenKeyW
RegQueryValueA
RegGetKeySecurity
RegCreateKeyExA
RegDeleteValueA
RegEnumValueA
RegDeleteKeyW
RegLoadKeyA
RegQueryValueW
RegQueryInfoKeyW
RegQueryValueExW
RegCreateKeyW
RegCreateKeyExW

Sections

.t88t
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.da9a
Size: 156KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rd35a
Size: 3KB - Virtual size: 198KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b5cbefe4fde82b39049c7424df7ab7e5

Headers

File Characteristics

Imports

user32

kernel32

comctl32

advapi32

Sections

.t88t Size: 10KB - Virtual size: 9KB

.da9a Size: 156KB - Virtual size: 156KB

.rd35a Size: 3KB - Virtual size: 198KB

.rsrc Size: 1KB - Virtual size: 1KB

.t88t
Size: 10KB - Virtual size: 9KB

.da9a
Size: 156KB - Virtual size: 156KB

.rd35a
Size: 3KB - Virtual size: 198KB

.rsrc
Size: 1KB - Virtual size: 1KB