56a018344d43cf248bf181a26c57a10d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

56a018344d43cf248bf181a26c57a10d_JaffaCakes118
Size

344KB
MD5

56a018344d43cf248bf181a26c57a10d
SHA1

337e1f0afeaac4cf2a36c0795e7bc0acca2e0237
SHA256

e75982907a828b4625e1adfd95a4ba439e2c39438570f5816823eacd4824dc01
SHA512

a462772dee77688c03d9ebb52cc2775832eb3f74953da8cf1e060c0942963ba0037a85feed499f259ce195117135bc4c5c03718c697ba7194c9fc95ad3320cbd
SSDEEP

6144:CdwNXESAe0XWmuz119RDYswsebRRuN3S4uhCx86CoiFDY+7OHwT1T:0wFES10XOlRDtwLbRRu8j9siFpywT1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
56a018344d43cf248bf181a26c57a10d_JaffaCakes118

Files

56a018344d43cf248bf181a26c57a10d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

13ff5e56bd205c5dfadea4609c6dd71d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetMenuItemInfoA
GetCursorPos
EnableWindow
CharToOemA
PtInRect
UnregisterClassA
DrawFrameControl
SetCapture
ClientToScreen
RemovePropA
CloseClipboard
MapWindowPoints
RemoveMenu
TranslateMDISysAccel
InsertMenuItemA
SetClassLongA
ShowOwnedPopups
GetWindowLongA
LoadKeyboardLayoutA
GetClassNameA
SetForegroundWindow
PeekMessageA
GetMessagePos
IntersectRect
DefWindowProcA
OemToCharA
UpdateWindow
SetPropA
InsertMenuA
EqualRect
ShowScrollBar
GetSystemMenu
GetSubMenu
MessageBoxA
GetMenuStringA
CharNextW
FindWindowA
FillRect
GetKeyboardState
DispatchMessageA
GetFocus
GetClipboardData
CreatePopupMenu
ShowWindow
IsDialogMessageA
CharUpperBuffA
ChildWindowFromPoint
LoadBitmapA
GetWindowRect
CharLowerA
GetWindowDC
GetKeyboardLayoutNameA
SetWindowLongW
ReleaseDC
GetKeyState
TranslateMessage
GetScrollPos
GetWindowLongW
IsIconic
SetWindowTextA
SetRect
GetDesktopWindow
PostMessageA
GetWindowPlacement
DestroyMenu
GetScrollInfo
InflateRect
GetSysColorBrush
GetClassInfoA
RedrawWindow
CreateIcon
ActivateKeyboardLayout

shlwapi

PathIsContentTypeA
PathIsDirectoryA
PathGetCharTypeA
SHDeleteKeyA
SHDeleteValueA
SHStrDupA
PathFileExistsA
SHGetValueA

gdi32

GetPaletteEntries
GetRgnBox
GetPixel

ole32

CoCreateFreeThreadedMarshaler
CLSIDFromString
CoUninitialize
ReleaseStgMedium
WriteClassStm
MkParseDisplayName
StringFromIID
CoCreateInstanceEx

kernel32

LoadLibraryA
GetProcAddress
LocalAlloc
VirtualAllocEx
IsBadReadPtr
lstrlenA
GetACP
ExitProcess
GlobalAlloc
GetCommandLineA
GetModuleHandleA
ExitThread

Sections

.text
Size: 65KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 266KB - Virtual size: 265KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc9
Size: 1024B - Virtual size: 531B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc2
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc8
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc4
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc0
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 988B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

13ff5e56bd205c5dfadea4609c6dd71d

Headers

File Characteristics

Imports

user32

shlwapi

gdi32

ole32

kernel32

Sections

.text Size: 65KB - Virtual size: 64KB

DATA Size: 266KB - Virtual size: 265KB

.rsrc9 Size: 1024B - Virtual size: 531B

.rsrc2 Size: 1KB - Virtual size: 1KB

.rsrc8 Size: 1KB - Virtual size: 1KB

.rsrc4 Size: 4KB - Virtual size: 4KB

.rsrc0 Size: 2KB - Virtual size: 2KB

.rsrc Size: 1024B - Virtual size: 988B

.text
Size: 65KB - Virtual size: 64KB

DATA
Size: 266KB - Virtual size: 265KB

.rsrc9
Size: 1024B - Virtual size: 531B

.rsrc2
Size: 1KB - Virtual size: 1KB

.rsrc8
Size: 1KB - Virtual size: 1KB

.rsrc4
Size: 4KB - Virtual size: 4KB

.rsrc0
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 1024B - Virtual size: 988B