fbea9f23379c341126bfabb8cfdbaa84_JaffaCakes118

General

Target

fbea9f23379c341126bfabb8cfdbaa84_JaffaCakes118
Size

39KB
MD5

fbea9f23379c341126bfabb8cfdbaa84
SHA1

1c7ab47afda92ae108f0fdef8492dae9a859eb75
SHA256

9fd9c1a1727682d2d1499ca597f67e81bffb067d51238d4c5d4daef3de57dcee
SHA512

ab2d3ec68bfae3403c7eab59025a92f0f1ad0236d37f8e22825ea46cd8dc0e4e08ed98a6ea20d31a360910f430a42aeeaec78de6a03bbbacf0a1f65165b7e392
SSDEEP

768:LhlDfjPWZ0JA8Oe7jS+h4zajjiL5K+aiNtgZJs8/MjjEvhox/fsZBOv0:LfjPWZ0JHP7jLhjeg+aiDgDDujEpj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fbea9f23379c341126bfabb8cfdbaa84_JaffaCakes118

Files

fbea9f23379c341126bfabb8cfdbaa84_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e8b0e7f7c8ac82ca37f77616883308b5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ClearCommBreak
CopyFileExW
CreateFiber
CreateProcessW
EndUpdateResourceW
ExitProcess
FoldStringW
GetFileAttributesW
GetNumberFormatW
GetPrivateProfileSectionA
GetProcessAffinityMask
GetStartupInfoW
GetTapeParameters
GetWindowsDirectoryA
InterlockedDecrement
IsDBCSLeadByteEx
LocalLock
MoveFileExW
OpenSemaphoreA
SetErrorMode
SetFileAttributesW
SetThreadLocale
UnhandledExceptionFilter
VerLanguageNameW
VirtualProtectEx
WinExec
WriteConsoleInputW
WriteFileGather
WritePrivateProfileStringA
lstrcpyW

user32

CallMsgFilterA
ChangeDisplaySettingsW
CharLowerBuffA
CheckMenuRadioItem
CreateIconFromResourceEx
CreateWindowExA
DdeClientTransaction
EnumDesktopsA
FindWindowExA
GetKeyState
GetShellWindow
GetUpdateRgn
InSendMessageEx
InvertRect
IsDialogMessageA
LoadIconA
LoadImageA
LoadImageW
SendMessageCallbackA
SetCapture
SetCursorPos
SetScrollPos
SetThreadDesktop
WindowFromPoint

gdi32

AnimatePalette
CombineRgn
CopyMetaFileA
CreateEllipticRgn
GdiFlush
GetCharacterPlacementA
GetCurrentPositionEx
GetMetaFileBitsEx
GetOutlineTextMetricsA
GetRasterizerCaps
GetTextExtentExPointA
GetTextExtentPointA
MaskBlt
PaintRgn
ResetDCA
ResizePalette
SetBoundsRect
SetColorSpace
SetDIBColorTable
SetSystemPaletteUse
SwapBuffers

Sections

.text
Size: 512B - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 37KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e8b0e7f7c8ac82ca37f77616883308b5

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 16KB

.data Size: 37KB - Virtual size: 40KB

.idata Size: - Virtual size: 16KB

.rsrc Size: - Virtual size: 4KB

.text
Size: 512B - Virtual size: 16KB

.data
Size: 37KB - Virtual size: 40KB

.idata
Size: - Virtual size: 16KB

.rsrc
Size: - Virtual size: 4KB