facd6680dac6acf1e987f209e5293580_JaffaCakes118

General

Target

facd6680dac6acf1e987f209e5293580_JaffaCakes118
Size

42KB
MD5

facd6680dac6acf1e987f209e5293580
SHA1

832d521290ff7eb6fcb4404f8cc507290e3fa797
SHA256

4b0003807a8fecafc33d2de7f5613aa3df42d68143cdded88c95484ae0cbc432
SHA512

85bc4adf34a3ba68d8c5a0c75f9860a85fb4a995f0f11984c5d8596509f5647065d1d6d0efc29937884eb313f3d3a3a00c1700fa4eb11305791144c17534190e
SSDEEP

768:kOnRaXwwNBV0dTl32H3dmunH8/+01ktvyRjSIc6vxmxoUq2o+tki:sXwwpqli3AuH8m/aRfvIZDo7i

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
facd6680dac6acf1e987f209e5293580_JaffaCakes118

Files

facd6680dac6acf1e987f209e5293580_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a961f670ced6f4ff896dc0c7a93e4864

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

AreFileApisANSI
BeginUpdateResourceW
CreateFiber
DebugBreak
DeleteFileW
EnumCalendarInfoExW
ExitProcess
FlushConsoleInputBuffer
GetCPInfo
GetConsoleMode
GetDiskFreeSpaceA
GetFileAttributesExW
GetPrivateProfileIntW
GetProcessTimes
GetWindowsDirectoryW
InitializeCriticalSectionAndSpinCount
IsBadWritePtr
QueryPerformanceCounter
SetCommState
SetComputerNameW
SetFileAttributesA
Thread32Next
UpdateResourceA
WriteConsoleA
WriteFileEx
WritePrivateProfileStringA

user32

ActivateKeyboardLayout
ChangeDisplaySettingsExA
DdeUninitialize
DefDlgProcA
DefWindowProcW
EnumDisplaySettingsExA
GetDesktopWindow
GetLastActivePopup
GetScrollInfo
GetSubMenu
IMPQueryIMEA
MapWindowPoints
OpenClipboard
OpenIcon
RegisterClassW
SetThreadDesktop
TabbedTextOutA
TileChildWindows
UnloadKeyboardLayout
UpdateWindow
ValidateRect
VkKeyScanExA
wsprintfW

gdi32

CloseEnhMetaFile
CloseMetaFile
CreateScalableFontResourceA
CreateSolidBrush
EnumFontsW
FrameRgn
GdiPlayScript
GetCharWidth32W
GetEnhMetaFileA
GetEnhMetaFileDescriptionW
GetMetaFileA
GetObjectA
GetTextCharset
GetTextCharsetInfo
MaskBlt
PaintRgn
RealizePalette
SetColorAdjustment
SetLayout
SetMetaFileBitsEx
SetPixelV
SetTextAlign
StretchBlt
StrokePath

Sections

.text
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a961f670ced6f4ff896dc0c7a93e4864

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 8KB

.data Size: 40KB - Virtual size: 60KB

.idata Size: - Virtual size: 16KB

.rsrc Size: - Virtual size: 12KB

.text
Size: 512B - Virtual size: 8KB

.data
Size: 40KB - Virtual size: 60KB

.idata
Size: - Virtual size: 16KB

.rsrc
Size: - Virtual size: 12KB