403d9fea752445616bda7c6fdff26872_JaffaCakes118

General

Target

403d9fea752445616bda7c6fdff26872_JaffaCakes118
Size

264KB
MD5

403d9fea752445616bda7c6fdff26872
SHA1

d4a2c64d9969449b73af856d5c42c4ec67780d19
SHA256

e2e2c3e8c1816b7d60cae380cb9af9bb45e75628e77caf30c5647fce1576335c
SHA512

c9ccd11a498cb68c47dbf3fa2c4c2b8432a3e6cede639d89365d3677e39d9b3d1efcf3a6e0e707e53a0a9e2ea1b7fc0b4f8a6474b3299fc4cbece2bf47508365
SSDEEP

6144:ohU/XGH6A8X/sfGHKW3VsmcD3XoOJUAchSACU4BUyt:ohAe8XkOHj+8OFch8U25t

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
403d9fea752445616bda7c6fdff26872_JaffaCakes118

Files

403d9fea752445616bda7c6fdff26872_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9de16b92d52fb7ebc87ec9efb4ae06ec

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileSize
DeleteFileA
GetLocalTime
HeapFree
GetFileAttributesA
HeapAlloc
lstrcatA
lstrcpynA
GlobalAlloc
GetStringTypeA
lstrcpyA
WideCharToMultiByte
GetCommandLineA
ExitProcess
GlobalFree
FreeLibrary
GetFileType
GetLastError
GetLogicalDrives
GetStringTypeW
GetLastError
FreeConsole
GlobalFree
FreeConsole
lstrcpyA
FreeConsole
GetOEMCP
FreeConsole
HeapFree
FreeConsole
FreeLibrary
FreeConsole
HeapAlloc
FreeConsole
GetFileType
FreeConsole
GetFileSize
FreeConsole

user32

DrawTextA
EndDialog
GetCursor
DrawIconEx
DrawTextW
IsWindow
CopyIcon
CopyImage
DialogBoxParamW
GetDlgItem
AlignRects
GetWindowTextLengthA
CopyRect
AppendMenuA
LoadMenuA
IsMenu
InsertMenuA
CreateIcon
GetFocus
GetFocus
LoadCursorA
AppendMenuA
GetWindowTextA
CopyIcon
GetMenu
DialogBoxParamW
GetWindowTextLengthA
IsMenu
GetDlgItem
DrawTextW
CalcMenuBar
DrawIcon
BlockInput
DialogBoxParamA
DrawTextA
GetCursor

Sections

.taxt
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.raada
Size: 216KB - Virtual size: 216KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.eadta
Size: 11KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.iaata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9de16b92d52fb7ebc87ec9efb4ae06ec

Headers

File Characteristics

Imports

kernel32

user32

Sections

.taxt Size: 23KB - Virtual size: 23KB

.raada Size: 216KB - Virtual size: 216KB

.eadta Size: 11KB - Virtual size: 15KB

.iaata Size: 9KB - Virtual size: 9KB

.taxt
Size: 23KB - Virtual size: 23KB

.raada
Size: 216KB - Virtual size: 216KB

.eadta
Size: 11KB - Virtual size: 15KB

.iaata
Size: 9KB - Virtual size: 9KB