55e53c759b093ce8b8b0bd51aab3251f_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

55e53c759b093ce8b8b0bd51aab3251f_JaffaCakes118
Size

115KB
MD5

55e53c759b093ce8b8b0bd51aab3251f
SHA1

d43b229e7d8d5a34b7fb8c08872b5c4625f61c85
SHA256

b410672783ddb7a8b03ba9a67535d1dbee873b2b04fed9b745a513867280cffd
SHA512

3a7bde8b38bb0e961e2ff9b89bf8b223d43872cabb77a0e81be55186eacc778895eabcae1076fed8fef29443b71d69530b84e41e94878fc15f9a2bc43cd1e7c7
SSDEEP

3072:J8612GhD5dcsctLMHWfzG6sUA4j+bMrr:a224gsWLMHEzGj9Zq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
55e53c759b093ce8b8b0bd51aab3251f_JaffaCakes118

Files

55e53c759b093ce8b8b0bd51aab3251f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

eaaadff170b2d337e58eff913097fa45

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CreateIcon
ReleaseCapture
IsDialogMessageA
RegisterClipboardFormatA
ChildWindowFromPoint
GetMenu
GetKeyboardLayoutList
SetCursor
GetClassNameA
SetWindowsHookExA
CharUpperBuffA
InvalidateRect
IsZoomed
DispatchMessageW
BeginPaint
PostQuitMessage
UpdateWindow
GetClientRect
DefFrameProcA
PostMessageA
DrawTextA
InsertMenuA
ScrollWindow
GetKeyboardState
ShowOwnedPopups
GetWindowDC
GetKeyboardType
GetIconInfo
EnumChildWindows
TranslateMessage
GetKeyState
CheckMenuItem
SendMessageW
RemovePropA
CharNextW
LoadStringA
SetCapture
RegisterWindowMessageA
DrawIcon
SendMessageA
AdjustWindowRectEx
DestroyCursor
DestroyWindow
GetClassLongA
UnregisterClassA
SystemParametersInfoA
TranslateMDISysAccel
GetScrollPos
ScreenToClient
SetForegroundWindow
GetSysColorBrush
GetSubMenu
IsIconic
IsDialogMessageW
DrawAnimatedRects
GetForegroundWindow
SetMenu
SetActiveWindow
SetScrollInfo
CreatePopupMenu
LoadBitmapA
EnableWindow

kernel32

ExitProcess
GetCommandLineA
LoadLibraryA
GetCurrentThreadId
VirtualAllocEx
GetCurrentProcessId

Exports

Exports

_ABaddcjaELzR4
_MpshMNGqi1O@4
jGRd4UtnWe9NO
_4AGahfPaWg_F@8
_snb2Pqey4q
nzA5CaG79L@16
QLFNAcnq2tv7b1
pamOjA9zFYwjvv@4

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 99KB - Virtual size: 211KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data
.rdata
.rsrc/0/DIALOG/TEXTFILEDLG
.rsrc/0/MANIFEST/1
.xml
.rsrc/0/RCDATA/DVCLAL
.rsrc/0/STRING/4094
.rsrc/0/STRING/4095
.rsrc/1033/BITMAP/BBABORT.bmp
.rsrc/1033/version.txt
.text

Sharing

General

Malware Config

Signatures

Files

eaaadff170b2d337e58eff913097fa45

Headers

File Characteristics

Imports

user32

kernel32

Exports

Exports

Sections

.text Size: 7KB - Virtual size: 7KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 99KB - Virtual size: 211KB

.rsrc Size: 5KB - Virtual size: 4KB

.text
Size: 7KB - Virtual size: 7KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 99KB - Virtual size: 211KB

.rsrc
Size: 5KB - Virtual size: 4KB