45d00d9dcb5578c63a809ada699e35b7_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

45d00d9dcb5578c63a809ada699e35b7_JaffaCakes118
Size

336KB
MD5

45d00d9dcb5578c63a809ada699e35b7
SHA1

c36a6de1b83c22176eeac98b2f6b19520306a6de
SHA256

c9ae8534a24a7a25a0105ea1796a7517a2b341ab5586d15759a23e4a50aaf4ae
SHA512

5793a56bca174982ba9a3a538dbcc0c2bcfd06f59082bbaa3451306440eeaaf4dfa2962663b823d0abdcaf5276d433df03ba6b967f3a55464073292551da9489
SSDEEP

6144:nGCsp0uUeP8XByJEsvVD+kxBxU51Po6rIqWp49VLmqEqoLIYoCD:GRPVtfMZozQVLmqEfd7D

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
45d00d9dcb5578c63a809ada699e35b7_JaffaCakes118

Files

45d00d9dcb5578c63a809ada699e35b7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

907930c6d1ec9518a1e869ab164b9415

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

oleaut32

VARIANT_UserMarshal

kernel32

CancelIo
GlobalFindAtomA

gdi32

GetCharacterPlacementA
CreateBitmapIndirect

comctl32

ImageList_Draw
ImageList_SetBkColor
ImageList_SetOverlayImage
ImageList_ReplaceIcon
ImageList_DragEnter
ImageList_GetImageInfo
ImageList_Write

advapi32

BuildTrusteeWithNameA
SetTokenInformation
GetSidSubAuthorityCount
GetSecurityDescriptorOwner
ImpersonateSelf

msvcrt

_memccpy

user32

ModifyMenuA
CloseWindowStation
IsDialogMessageA
GetScrollPos
CountClipboardFormats
RegisterClipboardFormatA
GetWindowTextW
SetActiveWindow
DefMDIChildProcW
SetWindowTextW
IsDlgButtonChecked
GrayStringW
AdjustWindowRect
BeginDeferWindowPos
SetDlgItemInt
DlgDirSelectExA
PostQuitMessage
GetKeyNameTextW
CreatePopupMenu
GetNextDlgGroupItem
ImpersonateDdeClientWindow
LoadAcceleratorsA
SetClassLongW
OffsetRect
GetClassInfoW
CreateWindowExA
MapDialogRect
GetMenu
GetWindowThreadProcessId
IsCharAlphaNumericA
GetDlgItemTextA
GetMenuDefaultItem
EnumChildWindows
IsWindow
SetClipboardViewer
CreateIconFromResource

Sections

.text
Size: 52KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

BSS
Size: 236KB - Virtual size: 233KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 3.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

907930c6d1ec9518a1e869ab164b9415

Headers

File Characteristics

Imports

oleaut32

kernel32

gdi32

comctl32

advapi32

msvcrt

user32

Sections

.text Size: 52KB - Virtual size: 49KB

BSS Size: 236KB - Virtual size: 233KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 12KB - Virtual size: 3.9MB

.rsrc Size: 28KB - Virtual size: 27KB

.text
Size: 52KB - Virtual size: 49KB

BSS
Size: 236KB - Virtual size: 233KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 12KB - Virtual size: 3.9MB

.rsrc
Size: 28KB - Virtual size: 27KB