f109666ae204570abdc12a5d68ec8b86_JaffaCakes118

General

Target

f109666ae204570abdc12a5d68ec8b86_JaffaCakes118
Size

41KB
MD5

f109666ae204570abdc12a5d68ec8b86
SHA1

6f05a226162b4e193f432e78e2cc6dd477cf9f3e
SHA256

fab454712e7782bcfb19657ef38e4c3b30551c23f70008661b069df636f395f8
SHA512

38ce7cff6290b8d839e05a4960c56d6ebd61db3a3e0c9e9be68f344b931e6da7a238dbc363a6369772270df49d598b3dbfeb07f59a4467b4623bbbc0e3d288b4
SSDEEP

768:uIsnFy9xMGNRV+1gRCND2q7MzZGI03VlIHGvcnyMUGAtrm:wnFaMGN2i4BIf03VUGUnyWAt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f109666ae204570abdc12a5d68ec8b86_JaffaCakes118

Files

f109666ae204570abdc12a5d68ec8b86_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f24a118cebd0089975942eedf7fc9fef

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BuildCommDCBA
EnumCalendarInfoW
ExitProcess
GetDiskFreeSpaceExA
GetDiskFreeSpaceW
GetFileAttributesExA
GetFileSize
GetOEMCP
GetProcAddress
GetUserDefaultLCID
GetWindowsDirectoryA
GlobalFlags
InitializeCriticalSection
IsBadCodePtr
IsBadHugeReadPtr
IsProcessorFeaturePresent
IsValidLocale
LocalLock
LocalReAlloc
OpenSemaphoreW
ReadConsoleOutputCharacterW
RtlUnwind
SetCalendarInfoW
SetConsoleCursorInfo
SetFileApisToANSI
SetupComm
UTUnRegister
WaitNamedPipeA
WriteConsoleOutputCharacterA

user32

AnyPopup
AttachThreadInput
CallNextHookEx
CheckMenuRadioItem
ChildWindowFromPointEx
DdeConnectList
DdeImpersonateClient
DdeUninitialize
DestroyCursor
EnumDisplayMonitors
GetAltTabInfo
GetDlgItemTextA
GetForegroundWindow
GetKeyNameTextW
GrayStringA
IMPSetIMEA
LoadIconW
LoadMenuA
LookupIconIdFromDirectory
RedrawWindow
SetDebugErrorLevel
SetPropA
SetWinEventHook
UnpackDDElParam
WinHelpW

gdi32

AngleArc
CheckColorsInGamut
CombineRgn
CreateColorSpaceA
CreateEnhMetaFileA
CreateFontIndirectA
CreateHalftonePalette
CreateMetaFileW
CreatePenIndirect
DeleteMetaFile
ExtCreatePen
ExtTextOutA
GetBoundsRect
GetClipRgn
GetFontData
GetGraphicsMode
GetMetaFileW
GetObjectType
GetOutlineTextMetricsA
GetPaletteEntries
GetTextExtentPoint32A
GetViewportOrgEx
OffsetWindowOrgEx
PolyTextOutW
SetBrushOrgEx
SetColorAdjustment
SetMetaRgn
SetRectRgn
SetTextJustification
SwapBuffers

Sections

.text
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f24a118cebd0089975942eedf7fc9fef

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 8KB

.data Size: 40KB - Virtual size: 52KB

.idata Size: - Virtual size: 16KB

.rsrc Size: - Virtual size: 8KB

.text
Size: 512B - Virtual size: 8KB

.data
Size: 40KB - Virtual size: 52KB

.idata
Size: - Virtual size: 16KB

.rsrc
Size: - Virtual size: 8KB