56326edd956381afbc2806b5f5771618_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

56326edd956381afbc2806b5f5771618_JaffaCakes118
Size

19KB
MD5

56326edd956381afbc2806b5f5771618
SHA1

952000f6369649174d3e387e786e140e6df570ee
SHA256

0230be8ec2c9a803195403b0a5d4039da0bcef4df520971f616887ef29093d90
SHA512

9f4033cd0807076e446d292833b550d2397959db55ade3387edf3f79ebac80ec550f740dceea7853b89a7d0408d1d523e6730bdd1e6aade9accb041d48859017
SSDEEP

384:TYbAyJ2vmkeywaZbI5D9U1P7ATiVOjmQfOAFniwoE:Mky4vEuC9U1MgOHGAFi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
56326edd956381afbc2806b5f5771618_JaffaCakes118

Files

56326edd956381afbc2806b5f5771618_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d2094a7b913d70009b41acf08d0f4474

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetSysColor
CharNextW
UpdateWindow
MessageBoxA
PostQuitMessage
SetCursor
LoadStringW
GetWindowRect
GetParent
EnableWindow
SetWindowPos
IsWindow
SetWindowLongW
wsprintfA
ReleaseDC
LoadStringA
SetTimer
EndPaint
KillTimer
wsprintfW
SendMessageA
CharNextA
TranslateMessage
InvalidateRect
ShowWindow
SetFocus
GetWindowLongA
MessageBoxW
SetWindowLongA
GetSystemMetrics
PostMessageW
EndDialog
GetClientRect
CreateWindowExA
SendMessageW
DispatchMessageA

kernel32

LockResource
AddAtomW
CreateFileMappingA
FindNextFileA
ExpandEnvironmentStringsA
LoadResource
GetComputerNameW
OutputDebugStringW
GetTempPathA
GetCommandLineW
IsDBCSLeadByte
IsValidCodePage
LoadLibraryExA
GetCurrentDirectoryW
GetExitCodeProcess
DeviceIoControl
ExitProcess
GetFullPathNameW
GetCurrentProcess
SizeofResource
CreateMutexW
CloseHandle
CreateProcessW
WriteConsoleW
ReleaseSemaphore
SetFileAttributesA
CreateMutexA
GetLastError
ResumeThread
MulDiv
OpenProcess
CreateDirectoryA
SetThreadPriority
VirtualAlloc
RemoveDirectoryW
CreateFileMappingW
IsBadCodePtr
lstrcatW
FindResourceA
RaiseException
VirtualFree
GetWindowsDirectoryW
FileTimeToLocalFileTime
CopyFileW

oleaut32

RegisterTypeLib
CreateErrorInfo
LoadTypeLibEx
SysFreeString
VariantClear
VariantCopy
SysAllocStringByteLen
VariantInit
VariantChangeTypeEx
SafeArrayGetLBound
VariantCopyInd
SafeArrayGetUBound
SetErrorInfo
GetErrorInfo
SafeArrayUnaccessData
VariantChangeType
SafeArrayGetElement
SafeArrayPutElement
OleLoadPicture
LoadTypeLib
GetActiveObject
SysAllocStringLen
SysStringLen
SafeArrayPtrOfIndex
SysStringByteLen
SafeArrayAccessData
SysReAllocStringLen

rpcrt4

NDRSContextMarshallEx
NdrByteCountPointerUnmarshall
NdrClientInitialize
NdrAsyncClientCall
NDRCContextMarshall
NDRSContextMarshall
CStdStubBuffer_CountRefs
NdrByteCountPointerBufferSize
MesDecodeIncrementalHandleCreate
MesIncrementalHandleReset
MesEncodeFixedBufferHandleCreate
MesHandleFree
NDRCContextBinding
NDRcopy
NdrConformantStructBufferSize
NdrAsyncServerCall
MesInqProcEncodingId
DllRegisterServer
NdrAllocate
CreateStubFromTypeInfo
DllGetClassObject
NdrByteCountPointerFree
MesBufferHandleReset
DceErrorInqTextW

Sections

.textbss
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.debug
Size: 1024B - Virtual size: 968B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 512B - Virtual size: 471B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d2094a7b913d70009b41acf08d0f4474

Headers

File Characteristics

Imports

user32

kernel32

oleaut32

rpcrt4

Sections

.textbss Size: - Virtual size: 8KB

.debug Size: 1024B - Virtual size: 968B

.text Size: 512B - Virtual size: 471B

.idata Size: 10KB - Virtual size: 9KB

.rdata Size: 1KB - Virtual size: 1KB

.rsrc Size: 3KB - Virtual size: 2KB

.data Size: 1KB - Virtual size: 1KB

.textbss
Size: - Virtual size: 8KB

.debug
Size: 1024B - Virtual size: 968B

.text
Size: 512B - Virtual size: 471B

.idata
Size: 10KB - Virtual size: 9KB

.rdata
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 3KB - Virtual size: 2KB

.data
Size: 1KB - Virtual size: 1KB