43eedb6e11c75fcad36d46863fe2d78d_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

43eedb6e11c75fcad36d46863fe2d78d_JaffaCakes118
Size

86KB
MD5

43eedb6e11c75fcad36d46863fe2d78d
SHA1

1d170da014f7fb504cd38a65c541ef5c31cc646f
SHA256

bdb84c4de8001478ee6e798a6e9bee570a8803cdf54e25a620a935467f4d68b5
SHA512

0ff6a14469ca28a5d45d91d7a09b722e04b7916f4525520ebddda81399a11ec621f83e84f81cb52a2ee6bf5067c463fd60f92d6e4e0a259b03689e1a6d0a5924
SSDEEP

1536:pHKsImp0Qnk/s0sWLOr0XLYDjnz3JJWiVFaWqlyDLrG+KqYB433cno:pHKskkQDEfrJJxXqlyTG+Zt35

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
43eedb6e11c75fcad36d46863fe2d78d_JaffaCakes118

Files

43eedb6e11c75fcad36d46863fe2d78d_JaffaCakes118
.exe windows:5 windows x86 arch:x86

40924966a2005bdfdf7de72dff1bf6d7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileMappingA
WaitForSingleObject
FreeEnvironmentStringsW
GetCommandLineW
lstrcmpiW
GetSystemTime
GetTimeZoneInformation
IsBadCodePtr
GetModuleHandleW
GetProcAddress
GetDiskFreeSpaceA
GetSystemTimeAsFileTime
GetStartupInfoW
SetUnhandledExceptionFilter
VirtualProtectEx
CompareStringW
SetLastError
FormatMessageA
GetFullPathNameA
GetProcessHeap
GetPrivateProfileStringA

msvcrt

__setusermatherr
wcslen
__p__fmode
strncpy
_XcptFilter
__p___initenv
_adjust_fdiv
_write
free
fwrite
_initterm
_setmode
calloc
_exit
__p__commode
_except_handler3
__set_app_type
atoi
_controlfp
__getmainargs

advapi32

GetSecurityDescriptorDacl
DeleteService
CryptReleaseContext
RegDeleteValueW
RegQueryValueA
QueryServiceStatus
FreeSid
RegCreateKeyA
SetSecurityDescriptorGroup
RegEnumKeyW
InitiateSystemShutdownA
GetLengthSid
RegEnumKeyA
RegCloseKey
CryptHashData

ole32

OleSetMenuDescriptor
OleIsCurrentClipboard
CoTaskMemFree
CoUninitialize
CoCreateInstance
OleUninitialize
ProgIDFromCLSID
StgOpenStorageOnILockBytes
OleGetClipboard
GetRunningObjectTable

user32

EnumThreadWindows
IsZoomed
PostMessageA
DrawIcon
GetKeyState
UpdateWindow
GetMenuState
EndDialog
CreatePopupMenu
InsertMenuItemA
SetRect
InflateRect
GetDlgItem
GetWindowRect

comctl32

ImageList_DragShowNolock
ImageList_Destroy
InitCommonControlsEx
ImageList_DragEnter
ImageList_SetImageCount
ImageList_Read
ImageList_EndDrag
CreatePropertySheetPageW
ImageList_LoadImageW
ImageList_GetBkColor
ImageList_SetBkColor
CreatePropertySheetPageA
ImageList_Remove
ImageList_SetDragCursorImage

gdi32

ExtTextOutA
ScaleViewportExtEx
PlayMetaFileRecord
GetRgnBox
MoveToEx
GetTextMetricsA

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

40924966a2005bdfdf7de72dff1bf6d7

Headers

File Characteristics

Imports

kernel32

msvcrt

advapi32

ole32

user32

comctl32

gdi32

Sections

.text Size: 5KB - Virtual size: 5KB

.data Size: 8KB - Virtual size: 61KB

.rsrc Size: 9KB - Virtual size: 8KB

.text
Size: 5KB - Virtual size: 5KB

.data
Size: 8KB - Virtual size: 61KB

.rsrc
Size: 9KB - Virtual size: 8KB