edc78374ad7636ecd9cd94a496cf6afa_JaffaCakes118

General

Target

edc78374ad7636ecd9cd94a496cf6afa_JaffaCakes118
Size

56KB
MD5

edc78374ad7636ecd9cd94a496cf6afa
SHA1

a6856416a2c9a5a331302b1b597023910195c872
SHA256

e2711100f3dda503593d4ba05b885c24728c33c6484dbe3e14f9bb6c6e6b3ee1
SHA512

2ace929bcc8279aa82ab8421bf2b6c235a4eb6d55e7a8291239a5367a17dc12fea0d8c7209ccc8161feb31c7ada852128dddfc29edffafa4a18da5e71c93192f
SSDEEP

1536:QxPLWTvSO4cIZIotHSnK59KJreYPTtg/WkqmpND:WLwSiFotynk9KDPTm/bqmpJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
edc78374ad7636ecd9cd94a496cf6afa_JaffaCakes118

Files

edc78374ad7636ecd9cd94a496cf6afa_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d909f120057930894353388d1d70eb3a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BuildCommDCBAndTimeoutsW
ExitProcess
GetBinaryType
GetCommTimeouts
GetConsoleScreenBufferInfo
GetNumberOfConsoleMouseButtons
GetProcessAffinityMask
GetThreadPriorityBoost
GlobalAddAtomA
HeapCompact
HeapReAlloc
IsDBCSLeadByte
LocalUnlock
MoveFileA
OutputDebugStringA
RequestDeviceWakeup
TlsFree
TlsSetValue
WaitNamedPipeW
WriteProfileSectionA

user32

CharNextExA
CreateDesktopW
CreateWindowExA
DdeImpersonateClient
DdeInitializeA
DefDlgProcA
DefWindowProcW
DialogBoxParamW
EnumDisplaySettingsW
EnumPropsExW
EnumThreadWindows
FreeDDElParam
GetClassInfoA
GetClassNameA
GetClipCursor
GetKeyboardLayoutList
GetOpenClipboardWindow
GetTabbedTextExtentW
GetWindowModuleFileNameA
LoadCursorFromFileA
RegisterWindowMessageA
ScrollDC
SendDlgItemMessageW
SetDebugErrorLevel
SetMenuItemBitmaps
SetUserObjectSecurity
TileChildWindows
ToUnicodeEx
VkKeyScanExW

gdi32

ChoosePixelFormat
CombineTransform
CreateBrushIndirect
CreateCompatibleDC
CreateDIBitmap
CreatePenIndirect
CreatePolygonRgn
EndPath
ExtEscape
GdiComment
GetCharWidth32A
GetCharWidthW
GetColorAdjustment
GetColorSpace
GetEnhMetaFileHeader
GetFontData
GetGlyphOutlineA
GetNearestPaletteIndex
GetPaletteEntries
GetRegionData
GetRgnBox
RemoveFontResourceA
SelectObject
SetBoundsRect
SetMiterLimit
SetPixelV
SetPolyFillMode
SetStretchBltMode
TextOutA

Sections

.text
Size: 512B - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d909f120057930894353388d1d70eb3a

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 12KB

.data Size: 8KB - Virtual size: 24KB

.idata Size: - Virtual size: 20KB

.rsrc Size: 1024B - Virtual size: 8KB

.text
Size: 512B - Virtual size: 12KB

.data
Size: 8KB - Virtual size: 24KB

.idata
Size: - Virtual size: 20KB

.rsrc
Size: 1024B - Virtual size: 8KB