40c7365918bbe30ec7f4a3362f6190df_JaffaCakes118

General

Target

40c7365918bbe30ec7f4a3362f6190df_JaffaCakes118
Size

43KB
MD5

40c7365918bbe30ec7f4a3362f6190df
SHA1

9d0ae6838ac126dd14bce9cc3e9e7ab27cf371ce
SHA256

cab8d230d3e2980b00c88ce5e3ad7f6490f09215494c68a9ffbe35deae09e85a
SHA512

ab64555b804b62a83d194d275977cf0160a784aec48a11675636df2f470fa8ecd2cbd7bafe156621d6db9c3ccb802fa8826d985f802a61e7d9faf6bd5de5bd23
SSDEEP

768:95JQKykwCn4RSdSXLvqiwQEfUpv6BFNjJxfK3bNq8lLkC4/zzvxM5y:9LQKy1G48dSXbqiwQE2v0Fxi3bNvlC//

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
40c7365918bbe30ec7f4a3362f6190df_JaffaCakes118

Files

40c7365918bbe30ec7f4a3362f6190df_JaffaCakes118
.exe windows:4 windows x86 arch:x86

230fa8411f481fa79843fdd4b2faee00

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetUserDefaultLCID
lstrcpyW
GetCurrentDirectoryW
GetCommandLineA
GetFileAttributesW
GetLocaleInfoA
GetNumberFormatW
GetSystemDefaultLangID
GetProfileStringA
VirtualAllocEx
GetDateFormatW
SetEnvironmentVariableA
GetPriorityClass
GetModuleHandleA
lstrcpynW
GetCurrentDirectoryA
LoadLibraryA
lstrcpy
GetModuleHandleExA
DeactivateActCtx
CompareFileTime
GetVersionExA

user32

GetDlgItem
ReleaseDC
CharPrevExA
CharPrevA
DialogBoxParamA
AppendMenuW
IsWindow
SendDlgItemMessageA
EnableWindow
IsWindow
GetSysColorBrush
GetParent
GetDesktopWindow
LoadCursorW
LoadIconA
DeleteMenu
ShowWindow
LoadStringW
LoadIconW
GetDlgItemTextA
IsCharLowerA
EndDialog
CharNextExA
SetDlgItemInt
SetWindowLongW
SetWindowLongA
wsprintfW
CreateWindowExW
GetWindowLongW
MessageBoxA
CreateMenu
SendMessageW
GetFocus

gdi32

RealizePalette
StretchBlt
PatBlt
GetStretchBltMode
CreatePenIndirect
GetPath
GetStringBitmapA
SetDIBColorTable

Sections

.text
Size: 37KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 50KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

230fa8411f481fa79843fdd4b2faee00

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 37KB - Virtual size: 36KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 50KB - Virtual size: 56KB

.rsrc Size: 6KB - Virtual size: 5KB

.text
Size: 37KB - Virtual size: 36KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 50KB - Virtual size: 56KB

.rsrc
Size: 6KB - Virtual size: 5KB