f4b6a4545fe053129e4086714cdff07e_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

f4b6a4545fe053129e4086714cdff07e_JaffaCakes118
Size

101KB
MD5

f4b6a4545fe053129e4086714cdff07e
SHA1

8ac3e7fb70e2a5b1dd0d62a23517ce59822942f6
SHA256

22f665a2edc356ef2570ad3366acdc916acc8ab6abb893c09b7f4d8a9abd3d76
SHA512

768ce05fa52c868dcca55199d1f0734083c485e94d0266625e7668c248ecea1a2a28d5db4d635ebc49d0f745543e37170f2e84f4beed6318891dc264946d07fb
SSDEEP

1536:Y9/tGOv68Ocz/EcVSZb7DmUS3YiSULn7DBbPwg4d:YbGOv6u7oJS3H9r3BbPwgw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f4b6a4545fe053129e4086714cdff07e_JaffaCakes118

Files

f4b6a4545fe053129e4086714cdff07e_JaffaCakes118
.dll windows:4 windows x86 arch:x86

bf6873425f3862d74f82663b8d5df21b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

SetConsoleCursorPosition
GetComputerNameW
GetAtomNameA
EnumDateFormatsA
GetTempPathW
VirtualAlloc
FindNextFileA
InterlockedExchange
ReadFileEx
SetConsolePalette
lstrcpyW
GetCommandLineW
GetCPInfo
GetEnvironmentStrings
GetFullPathNameW
RegisterConsoleVDM
InterlockedExchangeAdd
SetPriorityClass
GetTempPathA

user32

GetWindowTextLengthA
GetInternalWindowPos
GetClassInfoExW
QuerySendMessage
SetCaretBlinkTime
GetWindowDC
RemovePropW
BeginPaint
IsHungAppWindow
WaitForInputIdle
SetClassWord
BringWindowToTop
UserClientDllInitialize
SetDeskWallpaper

gdi32

RemoveFontResourceA
GetRelAbs
GetClipBox
GetTextExtentExPointA
TextOutA
GdiEntry15
CreateDIBitmap
GdiGetSpoolMessage
CreateScalableFontResourceW
Escape
DeleteEnhMetaFile
EqualRgn
gdiPlaySpoolStream
PaintRgn
CombineRgn
RectInRegion
GdiConvertDC
CreateRectRgnIndirect
PolyBezier
GdiEntry9
GetDCOrgEx
DeviceCapabilitiesExW
SetViewportOrgEx
GdiDllInitialize
ExtCreateRegion
CreateScalableFontResourceA
GetOutlineTextMetricsA
PatBlt
GetWorldTransform
GdiEntry4
PolyTextOutW
SetMagicColors
GetGlyphOutline
CreateDIBPatternBrush
CreateFontIndirectA
GetDIBits
ExtTextOutA
UnrealizeObject
CreateEnhMetaFileW

Sections

.data
Size: 6KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 22KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: 59KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bf6873425f3862d74f82663b8d5df21b

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.data Size: 6KB - Virtual size: 16KB

.text Size: 22KB - Virtual size: 24KB

.idata Size: 4KB - Virtual size: 8KB

BSS Size: 59KB - Virtual size: 132KB

.rdata Size: 4KB - Virtual size: 52KB

.reloc Size: 5KB - Virtual size: 8KB

.data
Size: 6KB - Virtual size: 16KB

.text
Size: 22KB - Virtual size: 24KB

.idata
Size: 4KB - Virtual size: 8KB

BSS
Size: 59KB - Virtual size: 132KB

.rdata
Size: 4KB - Virtual size: 52KB

.reloc
Size: 5KB - Virtual size: 8KB