56d422441d0998727b9f2a91dd3da13c_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

56d422441d0998727b9f2a91dd3da13c_JaffaCakes118
Size

236KB
MD5

56d422441d0998727b9f2a91dd3da13c
SHA1

d8dbb795dffb411c7420471d3b38923f9435bc9c
SHA256

f72506c9cc64547435383c1dbaadbe454fa5f5b8fbee121d0df9717766ef9629
SHA512

7eea2a0cea31842bb1649457c8f0b810a62b7ba41c5aa8452440c3981f3b3835a3604a83ee350dc84faa0937824599555c80f6d7c8cc15741231716a28d5c89e
SSDEEP

3072:axMDADKbAtG1HVx+erzAaJ/h2DWBJXefoisp+OQsehH4q4/:aipHVxtEU4uJXefop+oehHR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
56d422441d0998727b9f2a91dd3da13c_JaffaCakes118

Files

56d422441d0998727b9f2a91dd3da13c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7247aa111fc8c26411fa31a9a8f4e6b1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetPaletteEntries
GetClipBox
GetDCOrgEx
GetDIBColorTable
GetDIBits
CreateCompatibleBitmap
GetRgnBox
GetObjectA

shell32

SHGetSpecialFolderLocation
SHGetFolderPathA
SHGetFileInfoA
SHGetDesktopFolder

oleaut32

RegisterTypeLib
SafeArrayGetUBound

user32

GetClassNameA
EnumChildWindows
LoadKeyboardLayoutA
RegisterWindowMessageA
CallWindowProcA
DrawEdge
SetFocus
SetWindowTextA
SetClassLongA
GetScrollRange
PeekMessageA
SetCapture
EnumWindows
GetSysColorBrush
ShowScrollBar
EnableMenuItem
CallNextHookEx
SetParent
GetDCEx
DestroyCursor
DefFrameProcA
DispatchMessageW
CheckMenuItem
InsertMenuA
EnableScrollBar
SendMessageW
GetMenuStringA
GetClassLongA
GetWindow
GetCursorPos
GetKeyNameTextA
TranslateMDISysAccel
GetMenuItemID
EndPaint
BeginPaint
FindWindowA
CharLowerBuffA
IsDialogMessageA
CharLowerA
GetParent
SetRect
DestroyWindow
GetDlgItem
GetMenuState
SetPropA
OpenClipboard
EnumThreadWindows
ClientToScreen
SendMessageA
GetClientRect
SetScrollRange
SetActiveWindow
GetWindowTextA
ChildWindowFromPoint
DestroyMenu
EqualRect
IsChild
CreatePopupMenu
CharToOemA
DrawFrameControl
GetKeyboardLayoutList
IsWindowVisible
TrackPopupMenu
ScrollWindow
SetTimer
IsIconic
SetMenu
GetLastActivePopup
CloseClipboard
GetKeyboardState
IsWindowEnabled
SetScrollPos
UnhookWindowsHookEx
SetWindowPos
ShowWindow
CreateMenu
GetWindowThreadProcessId
IsWindow
CharNextA
SetMenuItemInfoA
IsDialogMessageW
GetCursor
GetWindowRect
CharNextW
GetActiveWindow
IsZoomed
PtInRect
SetClipboardData
CharUpperBuffA
ShowOwnedPopups
GetTopWindow
TranslateMessage
GetMenuItemCount
DefMDIChildProcA
GetWindowLongA
PostMessageA
LoadIconA
RegisterClipboardFormatA
GetForegroundWindow
MapWindowPoints
UnregisterClassA
MessageBoxA
DispatchMessageA
LoadStringA
GetMessagePos
DestroyIcon
FillRect
GetDesktopWindow
RedrawWindow
DrawIconEx
RegisterClassA
SetWindowPlacement
InsertMenuItemA
KillTimer
MessageBeep
GetCapture
GetKeyboardLayoutNameA
OemToCharA
GetScrollInfo
FrameRect
DeleteMenu
InvalidateRect
GetMenu
DrawMenuBar
SetWindowLongA
PeekMessageW
SetForegroundWindow
SetCursor
GetMenuItemInfoA
OffsetRect
SetWindowsHookExA
GetKeyboardType
InflateRect
GetPropA
LoadCursorA
GetSystemMenu
GetDC
GetScrollPos
GetKeyState
IsWindowUnicode
GetWindowLongW
GetWindowDC

kernel32

MoveFileA
GetProcessHeap
VirtualAlloc
GetACP
GetModuleFileNameA
GetLastError
ExitThread
GetStringTypeA
GetStartupInfoA
lstrcpynA
FreeLibrary
IsBadReadPtr
GetCommandLineA
ReadFile
GetModuleHandleA
LocalReAlloc
ExitProcess
GlobalAlloc
GetProcAddress
LoadLibraryA
HeapAlloc

Sections

CODE
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 150KB - Virtual size: 149KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc5
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc0
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc6
Size: 1024B - Virtual size: 713B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc2
Size: 1024B - Virtual size: 670B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc4
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 984B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7247aa111fc8c26411fa31a9a8f4e6b1

Headers

File Characteristics

Imports

gdi32

shell32

oleaut32

user32

kernel32

Sections

CODE Size: 72KB - Virtual size: 71KB

DATA Size: 150KB - Virtual size: 149KB

.rsrc5 Size: 5KB - Virtual size: 5KB

.rsrc0 Size: 2KB - Virtual size: 1KB

.rsrc6 Size: 1024B - Virtual size: 713B

.rsrc2 Size: 1024B - Virtual size: 670B

.rsrc4 Size: 2KB - Virtual size: 1KB

.rsrc Size: 1024B - Virtual size: 984B

CODE
Size: 72KB - Virtual size: 71KB

DATA
Size: 150KB - Virtual size: 149KB

.rsrc5
Size: 5KB - Virtual size: 5KB

.rsrc0
Size: 2KB - Virtual size: 1KB

.rsrc6
Size: 1024B - Virtual size: 713B

.rsrc2
Size: 1024B - Virtual size: 670B

.rsrc4
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 1024B - Virtual size: 984B