f7540d640c540309481d55cca6c45dbc_JaffaCakes118

General

Target

f7540d640c540309481d55cca6c45dbc_JaffaCakes118
Size

245KB
MD5

f7540d640c540309481d55cca6c45dbc
SHA1

86ec1bb0bcc71bdf10b9c6ad10cb5f45493e88db
SHA256

39c8abd5fd85c20f9b28f57f67df48365ae0fde172945a205ad14b8f9b87372c
SHA512

87b7b06160d7e4bc110b4af0701982f9b7d76311f836ba6db2ab8244757812783b63ae0eb4a8d85f21ae624358c06288c7c5d8c16d3256c7da9e3968f5093426
SSDEEP

6144:X85EDxVUfDwzhAFdad83dfvXeutg26pcdOzGdMt2+9knLy9sGUXDFV:QgKDwz4cd8tfvBSCQzGd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f7540d640c540309481d55cca6c45dbc_JaffaCakes118

Files

f7540d640c540309481d55cca6c45dbc_JaffaCakes118
.exe windows:4 windows x86 arch:x86

78fc90796a071c4bbe1d6ae647a7bb6d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

CreateMailslotW
CreateProcessA
CreateRemoteThread
ExitProcess
FreeLibraryAndExitThread
GetFileSize
GetNumberFormatW
GetProfileStringW
GetSystemInfo
GetTapeParameters
GetThreadSelectorEntry
GlobalFindAtomW
IsBadHugeReadPtr
IsBadStringPtrA
PurgeComm
ReadConsoleW
ReadDirectoryChangesW
ReadFileScatter
SetConsoleOutputCP
SetThreadPriorityBoost
VirtualQuery
WaitCommEvent

user32

CascadeWindows
CloseWindow
CreateDialogParamA
DeleteMenu
DlgDirSelectExA
GetClassInfoExW
GetClipboardSequenceNumber
GetCursor
GetKeyboardLayout
GetLastActivePopup
GetWindowModuleFileNameW
GetWindowTextLengthW
IMPSetIMEW
IsDialogMessageW
LoadImageW
LookupIconIdFromDirectory
MapDialogRect
MoveWindow
PackDDElParam
PeekMessageA
ScrollWindowEx
SetKeyboardState
SetPropA
SetWindowLongA
UnpackDDElParam
VkKeyScanExW

gdi32

CloseMetaFile
ColorCorrectPalette
CombineTransform
CreateEnhMetaFileA
CreateHalftonePalette
CreateHatchBrush
CreateMetaFileW
CreateRectRgnIndirect
EndPage
EndPath
EnumFontFamiliesW
ExtTextOutW
FillRgn
FrameRgn
GetCharABCWidthsFloatA
GetFontLanguageInfo
GetMapMode
GetNearestPaletteIndex
GetPath
GetPixelFormat
GetRgnBox
LineDDA
LineTo
MaskBlt
PlayEnhMetaFileRecord
PolyBezierTo
SelectClipRgn
SetViewportExtEx
SetWindowOrgEx
TranslateCharsetInfo

Sections

.text
Size: 512B - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 223KB - Virtual size: 228KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 212KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

78fc90796a071c4bbe1d6ae647a7bb6d

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 20KB

.data Size: 223KB - Virtual size: 228KB

.idata Size: - Virtual size: 4KB

.rsrc Size: 20KB - Virtual size: 212KB

.text
Size: 512B - Virtual size: 20KB

.data
Size: 223KB - Virtual size: 228KB

.idata
Size: - Virtual size: 4KB

.rsrc
Size: 20KB - Virtual size: 212KB