56c2e7c5ca40ea76939e851b6c060d73_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

56c2e7c5ca40ea76939e851b6c060d73_JaffaCakes118
Size

133KB
MD5

56c2e7c5ca40ea76939e851b6c060d73
SHA1

91082252ef47f7ce8d7a035ad47fb60d1d95de47
SHA256

a18cec0dae0c284067f3dc2b35d6154859c927d9d5169969b1a7297fe48657d7
SHA512

803831fe3d46e2fde2182252f5ed20afbc0b2b2d7489a3d2f5963184758da22cc7d3c38c77be2385788f1639ae969e6ff47ed5e3404e656dba7621a5f66663dc
SSDEEP

3072:vrTrAZwBDZox4EhApGvcTjOhTfbtSdFQlqjFltu:O6ux5CG0TjOhTf5KeUJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
56c2e7c5ca40ea76939e851b6c060d73_JaffaCakes118

Files

56c2e7c5ca40ea76939e851b6c060d73_JaffaCakes118
.exe windows:4 windows x86 arch:x86

29b68c8c928d54c8178b1db3c77fc6e2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStringTypeW
LoadLibraryA
GetFileSize
VirtualQuery
SizeofResource
GetSystemDefaultLangID
FindFirstFileA
Sleep
GetUserDefaultLCID
GetProcAddress
ReadFile
ExitProcess
VirtualAllocEx
FindClose
FreeLibrary
VirtualAlloc
SetEvent
GetOEMCP
lstrlenA
GetCurrentThread
GetACP
LocalFree
IsBadHugeReadPtr

comdlg32

GetSaveFileNameA
GetOpenFileNameA
ChooseColorA

user32

CheckMenuItem
GetSysColor
KillTimer
GetPropA
ClientToScreen
GetFocus
CreateWindowExA
CreatePopupMenu
GetWindowThreadProcessId
SetParent
UnhookWindowsHookEx
EmptyClipboard
GetWindowRect
EndPaint
EnumWindows
GetKeyboardState
GetCursor
GetKeyboardLayoutNameA
SystemParametersInfoA
GetMenuStringA
GetMessagePos
CharUpperBuffA
DefFrameProcA
ActivateKeyboardLayout
AdjustWindowRectEx
GetCursorPos
DispatchMessageA
RegisterClassA
SetWindowPlacement
IsWindowVisible
CharNextW
GetClassInfoA
CharLowerA
DrawEdge
PeekMessageW
CallNextHookEx
TrackPopupMenu
EndDialog
GetDlgItem
OpenClipboard
CharToOemA
CallWindowProcA
RemovePropA
GetClassLongA
IntersectRect
GetMenu
OpenIcon
GetScrollPos
UpdateWindow
DispatchMessageW
GetSystemMenu
PtInRect
RegisterWindowMessageA
SetActiveWindow
GetWindowDC
SetRect
UnregisterClassA
SetScrollRange
DefWindowProcA
GetSubMenu
GetSysColorBrush

Exports

Exports

_A0aUFZyeBzY@24
_CGqRet0QvGari

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 99KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 1024B - Virtual size: 932B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

29b68c8c928d54c8178b1db3c77fc6e2

Headers

File Characteristics

Imports

kernel32

comdlg32

user32

Exports

Exports

Sections

.text Size: 9KB - Virtual size: 9KB

.data Size: 12KB - Virtual size: 115KB

.adata Size: 99KB - Virtual size: 98KB

.edata Size: 1024B - Virtual size: 932B

.idata Size: 2KB - Virtual size: 2KB

.rsrc Size: 8KB - Virtual size: 8KB

.text
Size: 9KB - Virtual size: 9KB

.data
Size: 12KB - Virtual size: 115KB

.adata
Size: 99KB - Virtual size: 98KB

.edata
Size: 1024B - Virtual size: 932B

.idata
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 8KB - Virtual size: 8KB