3ef808c94d7d4b2306c8ebc9f34fe7c5_JaffaCakes118

General

Target

3ef808c94d7d4b2306c8ebc9f34fe7c5_JaffaCakes118
Size

93KB
MD5

3ef808c94d7d4b2306c8ebc9f34fe7c5
SHA1

13e79dfd059dc826faa02b7fe8ca15c3052ec568
SHA256

c98878aed2ea525779922d1166b90cf1e15124fe2d2e528dcf1c2e0287530b3d
SHA512

c74e6eb978880afc12ad12fafe2b36c969356e13ed5b733e45aaa4d54fec50516bcc1b71e7a024f02b6f5f0315169f92d0aa82743b1846b24ceb298aeaee0dee
SSDEEP

1536:za1aqWd6P6EGWvzsxZBkNeE1vjviB+qjtNF4:za1aqWd6P1nzAZusE1WHjZ4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3ef808c94d7d4b2306c8ebc9f34fe7c5_JaffaCakes118

Files

3ef808c94d7d4b2306c8ebc9f34fe7c5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1f8bc4e3f575c1113b6746acfbb79a55

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_LoadImageA
ImageList_Create
ImageList_Remove
ImageList_DrawIndirect
ImageList_Copy
ImageList_DragShowNolock
ImageList_AddMasked
ImageList_DragMove
ImageList_LoadImage
ImageList_Destroy
ImageList_LoadImageW
ImageList_Read
ImageList_Merge
ImageList_BeginDrag
ImageList_GetImageRect
ImageList_GetImageInfo
ImageList_DrawEx

kernel32

lstrcpyA
GetCPInfo
lstrlenA
HeapFree
Sleep
GetFileSize
GetLocalTime
GetFileAttributesA
GetStringTypeA
CloseHandle
GetLastError
GetModuleHandleA
DeleteFileA
GetDateFormatA
lstrcpynA
GetStdHandle

user32

CloseWindow
CreateIcon
AppendMenuA
IsMenu
DrawIconEx
DrawTextA
GetWindowTextA
AppendMenuW
EndDialog
CopyImage
IsWindow
GetDC
LoadCursorA
DrawTextW
DialogBoxParamA
GetMenu
InsertMenuA
DrawIcon

advapi32

RegCreateKeyExW
RegEnumKeyW
RegReplaceKeyA
RegLoadKeyA
RegOpenKeyExA
RegLoadKeyW
RegEnumValueW
RegEnumKeyExA
RegDeleteKeyA
RegQueryInfoKeyA
RegQueryValueExA
RegQueryValueA
RegFlushKey
RegOpenKeyExW
RegCreateKeyW
RegEnumValueA
RegOpenKeyW

Sections

.CsMi
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.gIltr
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.kMcZR
Size: 7KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.XbqHD
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1f8bc4e3f575c1113b6746acfbb79a55

Headers

File Characteristics

Imports

comctl32

kernel32

user32

advapi32

Sections

.CsMi Size: 14KB - Virtual size: 14KB

.gIltr Size: 64KB - Virtual size: 64KB

.kMcZR Size: 7KB - Virtual size: 51KB

.XbqHD Size: 3KB - Virtual size: 3KB

.CsMi
Size: 14KB - Virtual size: 14KB

.gIltr
Size: 64KB - Virtual size: 64KB

.kMcZR
Size: 7KB - Virtual size: 51KB

.XbqHD
Size: 3KB - Virtual size: 3KB