468cbd36ebfac0faf91bfa96785f63ce_JaffaCakes118

General

Target

468cbd36ebfac0faf91bfa96785f63ce_JaffaCakes118
Size

19KB
MD5

468cbd36ebfac0faf91bfa96785f63ce
SHA1

b3ae560d665c33abc89fa20b56705b4ae3039126
SHA256

9f4609d35b09b4ee5ce16ca097c29d531de692c052df05dac560d385e0b712c2
SHA512

c1b6f215e199f45d12b90b058db81ad169ea49ace3d991d628147397b572a3e2a6e657c0193ae4abd245db38350e83eb0143ab926e08858584fdcaed2402c275
SSDEEP

384:/nuZSbNmoA43yLPI3gV1X2xynpcy/e4/NWf5g015JAKyJGJ:WZ4AoA43yzI7x8/eKNq5M

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
468cbd36ebfac0faf91bfa96785f63ce_JaffaCakes118

Files

468cbd36ebfac0faf91bfa96785f63ce_JaffaCakes118
.exe windows:1 windows x86 arch:x86

d496d90f482fee63dfb48486cc1b2191

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DebugActiveProcessStop
CloseHandle
CopyFileA
DeleteFileA
CreateFileA
CreateFileMappingA
CreateProcessA
ExitProcess
GetCommandLineA
GetFileSize
GetModuleFileNameA
GetModuleHandleA
GetWindowsDirectoryA
MapViewOfFile
RtlZeroMemory
SetFilePointer
Sleep
TerminateProcess
UnmapViewOfFile
VirtualQueryEx
WriteFile
lstrcatA
lstrcpynA

advapi32

RegCreateKeyA
RegOpenKeyExA
RegSetValueExA

user32

DialogBoxParamA
EnableMenuItem
EndDialog
GetDlgItem
GetDlgItemTextA
KillTimer
LoadImageA
LoadMenuA
MessageBoxA
SendDlgItemMessageA
SendMessageA
SetMenu
SetTimer
wsprintfA

comctl32

CreateToolbarEx
InitCommonControls

comdlg32

GetOpenFileNameA

shell32

ShellExecuteA
DragAcceptFiles
DragQueryFile
DragFinish

Sections

.flat
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 1.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.code
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.import
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d496d90f482fee63dfb48486cc1b2191

Headers

File Characteristics

Imports

kernel32

advapi32

user32

comctl32

comdlg32

shell32

Sections

.flat Size: 2KB - Virtual size: 2KB

.data Size: 1024B - Virtual size: 1.9MB

.code Size: 9KB - Virtual size: 9KB

.import Size: 1KB - Virtual size: 1KB

.rsrc Size: 4KB - Virtual size: 3KB

.flat
Size: 2KB - Virtual size: 2KB

.data
Size: 1024B - Virtual size: 1.9MB

.code
Size: 9KB - Virtual size: 9KB

.import
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 4KB - Virtual size: 3KB