7841c0bf5736bc75c98d188e1faf4b27_JaffaCakes118

General

Target

7841c0bf5736bc75c98d188e1faf4b27_JaffaCakes118
Size

106KB
MD5

7841c0bf5736bc75c98d188e1faf4b27
SHA1

af59fda3076d3da2aa90eae92f8c104f20d8721e
SHA256

ebce2e105025931091c580d01506bd710279b3b6e994ce81eb7e976575c20308
SHA512

e16b826b1434b8dc9fec9a9aa68aa4d934da1b4a2dcfdf2c5df4518b26d7befb3dc27e274057f2c5c1fd3742715ac867a9980403c2e281f5b8dd2be702171fb2
SSDEEP

1536:qIKALFV35KfRX+jUcqrGV5czj85rBoyYRaSzK3:qaVJKZ+UUczjhz4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7841c0bf5736bc75c98d188e1faf4b27_JaffaCakes118

Files

7841c0bf5736bc75c98d188e1faf4b27_JaffaCakes118
.exe windows:4 windows x86 arch:x86

62a66092f842804f1134070172a36627

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

wsprintfA
MessageBoxA
GetClassLongW
InsertMenuW
CreateDesktopA
DialogBoxParamA
GetMessageA
PeekMessageW
DrawStateW
GetPropA
GetDlgItemTextW

nddeapi

NDdeShareSetInfoA
NDdeShareEnumA

wtsapi32

WTSEnumerateServersA
WTSQuerySessionInformationA
WTSLogoffSession
WTSVirtualChannelClose
WTSVirtualChannelPurgeInput
WTSQueryUserToken
WTSEnumerateSessionsW
WTSSetUserConfigW
WTSVirtualChannelWrite
WTSVirtualChannelQuery
WTSVirtualChannelRead
WTSSetSessionInformationW
WTSRegisterSessionNotification

modemui

CountryRunOnce
drvCommConfigDialogA
drvSetDefaultCommConfigA
drvGetDefaultCommConfigA

kernel32

WaitForSingleObject
HeapCreate
SystemTimeToFileTime
GlobalAddAtomA
GetPrivateProfileStringA
CreateProcessW
OpenMutexA
OpenFileMappingW
GetACP
FindNextFileW
CopyFileA
GetLocalTime
GetProcAddress
LoadLibraryA
VirtualProtect
LoadLibraryExW
GetTickCount
CreateFileA
SetEnvironmentVariableA

Sections

.text
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 203B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 34KB - Virtual size: 33KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

62a66092f842804f1134070172a36627

Headers

File Characteristics

Imports

user32

nddeapi

wtsapi32

modemui

kernel32

Sections

.text Size: 67KB - Virtual size: 67KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 512B - Virtual size: 203B

.rsrc Size: 34KB - Virtual size: 33KB

.text
Size: 67KB - Virtual size: 67KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 512B - Virtual size: 203B

.rsrc
Size: 34KB - Virtual size: 33KB