fecd7a4f96540f6620546c87499c094b_JaffaCakes118

General

Target

fecd7a4f96540f6620546c87499c094b_JaffaCakes118
Size

43KB
MD5

fecd7a4f96540f6620546c87499c094b
SHA1

20e2cfa4d6ae73c9384db6c14a9dba930a118168
SHA256

a9800e40aa81517860d95154c73a06a60789bc9792ebc4c03fec438f9775f077
SHA512

2dcb9599334ccd4bc97aeda89e4e8c898176503667986ed053916e5eb8ab2c40225420bc8fa6b8f6f63f7ecea6a25e00a4bedde794a5abd97f1ca1033ba978ba
SSDEEP

768:ueZyhG18bL3mp/oXLGPqOpY/mV7hSFvrOAFFN02kM8bKJR0:d0zbLWRAuq0Y/mV7hmDOAFzwFcR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fecd7a4f96540f6620546c87499c094b_JaffaCakes118

Files

fecd7a4f96540f6620546c87499c094b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

20d714c1fce19b6353b07b0d7fa94ed8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateMutexW
CreateSemaphoreA
CreateTapePartition
EnterCriticalSection
ExitProcess
GetHandleInformation
GetPrivateProfileSectionA
GetTempFileNameW
GlobalFix
MoveFileA
PeekConsoleInputW
PeekNamedPipe
ReadFileEx
ResetWriteWatch
SetStdHandle
WriteConsoleOutputCharacterA
WriteFileEx
WriteProfileSectionW
lstrcmpW
lstrcmpiW
lstrcpyn

user32

BlockInput
CharToOemA
CloseClipboard
CreateCursor
CreateIcon
DialogBoxParamA
DlgDirListA
DragDetect
DrawStateA
EnumWindowStationsW
GetCaretPos
GetDlgItem
GetInputState
GetNextDlgGroupItem
GetQueueStatus
GetUpdateRgn
GetWindowLongW
GetWindowModuleFileNameA
GrayStringA
IsDialogMessageW
IsZoomed
LoadIconW
MapDialogRect
ReplyMessage
SetMenuContextHelpId
SetPropW
UnhookWinEvent
ValidateRect

gdi32

CloseFigure
CreateDIBPatternBrush
CreateDIBitmap
CreateEllipticRgn
CreateFontA
CreatePenIndirect
CreateRectRgn
CreateSolidBrush
EnumFontFamiliesExW
ExcludeClipRect
ExtSelectClipRgn
ExtTextOutW
GetBitmapBits
GetCharWidthFloatA
GetClipBox
GetStretchBltMode
GetTextCharacterExtra
GetTextExtentExPointA
IntersectClipRect
OffsetViewportOrgEx
PaintRgn
PlayEnhMetaFile
SetColorAdjustment
SwapBuffers
UpdateColors
gdiPlaySpoolStream

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 41KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xdata
Size: - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

20d714c1fce19b6353b07b0d7fa94ed8

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 4KB

.data Size: 41KB - Virtual size: 60KB

.xdata Size: - Virtual size: 16KB

.rsrc Size: - Virtual size: 12KB

.text
Size: 512B - Virtual size: 4KB

.data
Size: 41KB - Virtual size: 60KB

.xdata
Size: - Virtual size: 16KB

.rsrc
Size: - Virtual size: 12KB