445ca3704d856c2f8d7ff5d3382944eb_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

445ca3704d856c2f8d7ff5d3382944eb_JaffaCakes118
Size

237KB
MD5

445ca3704d856c2f8d7ff5d3382944eb
SHA1

c2d45224e9066c9b54943e7c0f39f71f2d993846
SHA256

df24a04e45f74b69a8e23a5da6ef9a6ef59d088c482121b5e8e088787d132c36
SHA512

da57f4150ea8784e5fb202979bec2e185f2d62a71b82cd55b669402287956e393a0e4c88b3df8f74174f9cc43ba6ce83d7f756cbe41b5b8493a976512fa8f9fa
SSDEEP

3072:CXHrn+hFC3pzGyEgkVUT1lfU5CkOhkJ3RSkwPhqGQYAnRRh0c/kdfjYxlYAnUbJW:CXHKWpzbmVksrDZxwPhWLjin7KWJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
445ca3704d856c2f8d7ff5d3382944eb_JaffaCakes118

Files

445ca3704d856c2f8d7ff5d3382944eb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5e46d417fff602f638dda96ed31741c6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

user32

PeekMessageA
RegisterClipboardFormatA
MessageBoxA
RemovePropA

gdi32

SaveDC
RestoreDC
CreateBitmap
SetPixel
CreateCompatibleDC
CopyEnhMetaFileA
GetPaletteEntries
CreateFontIndirectA
SetTextColor
SelectObject

kernel32

LocalAlloc
GetCommandLineA
GetOEMCP
ExitProcess
LoadLibraryA
ExitThread
GetProcAddress
GetModuleHandleA
GetCommandLineW
GetLastError
VirtualAllocEx
lstrlenA
IsBadReadPtr

msvcrt

wcschr
log
strncmp

Sections

CODE
Size: 67KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 156KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

RES4
Size: 512B - Virtual size: 54B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RES0
Size: 1024B - Virtual size: 514B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

RES6
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

RES2
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

RES8
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

RES5
Size: 1024B - Virtual size: 649B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RES7
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5e46d417fff602f638dda96ed31741c6

Headers

File Characteristics

Imports

user32

gdi32

kernel32

msvcrt

Sections

CODE Size: 67KB - Virtual size: 66KB

DATA Size: 156KB - Virtual size: 156KB

RES4 Size: 512B - Virtual size: 54B

RES0 Size: 1024B - Virtual size: 514B

RES6 Size: 2KB - Virtual size: 1KB

RES2 Size: 2KB - Virtual size: 1KB

RES8 Size: 2KB - Virtual size: 1KB

RES5 Size: 1024B - Virtual size: 649B

RES7 Size: 2KB - Virtual size: 1KB

.rsrc Size: 2KB - Virtual size: 2KB

CODE
Size: 67KB - Virtual size: 66KB

DATA
Size: 156KB - Virtual size: 156KB

RES4
Size: 512B - Virtual size: 54B

RES0
Size: 1024B - Virtual size: 514B

RES6
Size: 2KB - Virtual size: 1KB

RES2
Size: 2KB - Virtual size: 1KB

RES8
Size: 2KB - Virtual size: 1KB

RES5
Size: 1024B - Virtual size: 649B

RES7
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 2KB - Virtual size: 2KB