f6ce57f118d11c0accb9d0ea7050881d_JaffaCakes118

General

Target

f6ce57f118d11c0accb9d0ea7050881d_JaffaCakes118
Size

25KB
MD5

f6ce57f118d11c0accb9d0ea7050881d
SHA1

f7b6fc27f59181d9664a6c20d9ca4c8547ea3f85
SHA256

dce311efd6770f1fe6b7bb785639005899785bb7f831a3dcf2aeea979dbbccdd
SHA512

313c496579b5515d2606cba60d1fcfbbf8a95c55ed355024c17f2c299f8a9149e5a9d8a6b56e81d60cd504e7494fc8df1496e6d137c559631eef5bcc16c04af2
SSDEEP

384:5qOrZjva53aVGPJYEueplm/Jb2/vcsUQvJjX0NwUs/bFvr39kweRU7HQauJq5o+M:5q/aVS3BAJbIUNEO3s/lXuU7wXYo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f6ce57f118d11c0accb9d0ea7050881d_JaffaCakes118

Files

f6ce57f118d11c0accb9d0ea7050881d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6713a5cc6e817f8d0d4da6a0a1653726

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareStringA
CreateFileMappingW
CreateIoCompletionPort
CreateWaitableTimerA
ExitProcess
FindFirstFileExW
FindNextFileA
FlushFileBuffers
GetCPInfoExW
GetCommandLineA
GetConsoleTitleA
GetCurrencyFormatA
GetModuleHandleW
GetOEMCP
GetThreadContext
GetTimeFormatA
GetTimeFormatW
QueryDosDeviceA
QueryDosDeviceW
ResumeThread
SetConsoleTitleW
SetCriticalSectionSpinCount
SetThreadIdealProcessor
SwitchToThread
WriteConsoleW
WriteProfileStringW
lstrcmp
lstrcmpiA

user32

ChangeClipboardChain
CharNextW
CreateWindowExA
DefDlgProcW
DefFrameProcW
DefMDIChildProcW
DefWindowProcW
DialogBoxIndirectParamA
EnumDesktopsA
EnumDisplaySettingsExW
EnumPropsW
GetClassInfoW
GetKeyNameTextA
GetMessageA
GetMessageTime
GetSystemMenu
GetUpdateRgn
GetWindowDC
GetWindowTextA
GetWindowWord
IsCharLowerA
IsWindowUnicode
LoadCursorFromFileW
NotifyWinEvent
RegisterLogonProcess
ToAsciiEx
WindowFromDC

gdi32

AbortPath
Chord
ColorMatchToTarget
CreatePen
CreatePolygonRgn
EndPage
FixBrushOrgEx
GetCharWidthA
GetDIBColorTable
GetGlyphOutline
GetGraphicsMode
GetStockObject
GetTextExtentPointW
OffsetWindowOrgEx
PathToRegion
Pie
RectVisible
ResetDCW
ResizePalette
SetLayout
SetMapperFlags
SetPolyFillMode
SetViewportExtEx

Sections

.text
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 23KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6713a5cc6e817f8d0d4da6a0a1653726

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 8KB

.data Size: 23KB - Virtual size: 28KB

.rdata Size: - Virtual size: 8KB

.rsrc Size: - Virtual size: 8KB

.text
Size: 512B - Virtual size: 8KB

.data
Size: 23KB - Virtual size: 28KB

.rdata
Size: - Virtual size: 8KB

.rsrc
Size: - Virtual size: 8KB