f93bd308b635aebee7e09265a199b936_JaffaCakes118

General

Target

f93bd308b635aebee7e09265a199b936_JaffaCakes118
Size

56KB
MD5

f93bd308b635aebee7e09265a199b936
SHA1

e00af81354d832dc192ad3853773c912ee8431ff
SHA256

63320d5d71046a8aa368e0063359f6f9bcd6fceaf6488fcdacc1efbb83c11560
SHA512

f9c3c1ab34721b000762f1f3c76ec0f471a8604c3d821ed103f551a664c79d1f4a44e6a755f27eadacf0c3b68d65df2face3525a285640dd716046a469a09734
SSDEEP

768:uU74T4D3ry9oMqtnznSfyEHpoByaOqDNeWAfRFEVNBDaLGDM8o1cLEy4y59zc83:u08wry9olRz9BH3eWAf2paeM8oQFfb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f93bd308b635aebee7e09265a199b936_JaffaCakes118

Files

f93bd308b635aebee7e09265a199b936_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8d7c00bfbc486ad62196be691539bdb2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CopyFileA
CreateThread
DeleteFileA
ExitProcess
GetDiskFreeSpaceW
GetExitCodeThread
GetFileType
GetModuleHandleA
GlobalFindAtomA
GlobalReAlloc
LocalUnlock
OpenSemaphoreA
RemoveDirectoryW
ResetEvent
SetLastError
SetProcessAffinityMask
SetTapePosition
SetThreadContext
SetupComm
SuspendThread
_lwrite

user32

BlockInput
CreateMDIWindowW
DdeDisconnect
DdeQueryStringW
DrawCaption
DrawMenuBar
EnumWindows
GetDCEx
GetMenuContextHelpId
GetMenuItemRect
GrayStringW
LoadBitmapW
MapVirtualKeyExA
OpenDesktopA
RedrawWindow
RegisterClipboardFormatW
RegisterWindowMessageA
RegisterWindowMessageW
SendDlgItemMessageA
SetDeskWallpaper
SetWinEventHook
UpdateWindow
WaitForInputIdle
wvsprintfA

gdi32

AddFontResourceW
AnimatePalette
CloseMetaFile
CreateCompatibleBitmap
CreateDIBSection
CreateEnhMetaFileA
EndPage
GetBoundsRect
GetCharABCWidthsFloatW
GetCharWidthA
GetCharacterPlacementA
GetFontLanguageInfo
GetGlyphOutline
GetKerningPairs
GetLogColorSpaceW
GetNearestColor
GetOutlineTextMetricsW
GetTextAlign
GetTextColor
GetTextFaceW
GetTextMetricsA
GetWinMetaFileBits
PolyBezierTo
PtInRegion
RectVisible
ResetDCA
SetViewportOrgEx

Sections

.text
Size: 512B - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8d7c00bfbc486ad62196be691539bdb2

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 12KB

.data Size: 8KB - Virtual size: 16KB

.idata Size: - Virtual size: 4KB

.rsrc Size: 1024B - Virtual size: 12KB

.text
Size: 512B - Virtual size: 12KB

.data
Size: 8KB - Virtual size: 16KB

.idata
Size: - Virtual size: 4KB

.rsrc
Size: 1024B - Virtual size: 12KB