464b73ac3028235821baa34c5e5ade1d_JaffaCakes118

General

Target

464b73ac3028235821baa34c5e5ade1d_JaffaCakes118
Size

409KB
MD5

464b73ac3028235821baa34c5e5ade1d
SHA1

33ab91fe3565439effe0eeb02401a4b993a199bc
SHA256

68ef292772bfc0b0483a2ce78c1d5ec5353fca15bf4dd074b460346ada909ec0
SHA512

0217da545de6bd8a48f8b220d2c633040601ccb42234d89254986dd969cdcd9d479a678fd2a17539d56f611f7f1df1986c26e8935a2f9f1202cf2a5b0195dbf6
SSDEEP

6144:2d3CqsCQXUt9hQ3OCBriD2xEMcRVmZZuPZDuAmOMvc6mYnjIv2Og4ziSV1tLEBYT:2wo95xDqJIDuA6g2OgW1tLEBY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
464b73ac3028235821baa34c5e5ade1d_JaffaCakes118

Files

464b73ac3028235821baa34c5e5ade1d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b7830dc7b5f0393ff9eae99c13812352

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadResource
FindResourceA
SetFilePointer
HeapDestroy
HeapCreate
lstrlenA
WaitForSingleObject
ReadFile
GetFileSize
CreateFileA
CloseHandle
WriteProcessMemory
TerminateThread
Sleep
SetThreadPriority
RtlZeroMemory
GlobalFree
GlobalAlloc
GetTickCount
GetModuleHandleA
FindFirstFileA
SizeofResource
ExitProcess
CreateThread
HeapAlloc
CreateProcessA

user32

SetWindowPos
SetRect
SetDlgItemTextA
SendMessageA
ReleaseDC
PostQuitMessage
MessageBoxA
LoadIconA
LoadBitmapA
KillTimer
GetWindowRect
BeginPaint
DestroyWindow
DialogBoxParamA
DrawTextA
SetTimer
EndDialog
EndPaint
GetClientRect
GetWindowDC
GetParent
GetDlgItem
GetDC

gdi32

CreateCompatibleBitmap
CreateCompatibleDC
CreateDIBSection
CreateFontIndirectA
DeleteDC
DeleteObject
GetDIBits
GetObjectA
SelectObject
SetBkMode
SetDIBits
SetTextColor
BitBlt

winmm

waveOutWrite
waveOutUnprepareHeader
waveOutPrepareHeader
waveOutOpen
waveOutGetPosition
waveOutClose
waveOutReset

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 394KB - Virtual size: 393KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b7830dc7b5f0393ff9eae99c13812352

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winmm

Sections

.text Size: 11KB - Virtual size: 11KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 1024B - Virtual size: 74KB

.rsrc Size: 394KB - Virtual size: 393KB

.text
Size: 11KB - Virtual size: 11KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 1024B - Virtual size: 74KB

.rsrc
Size: 394KB - Virtual size: 393KB