0280ca4e2cce5b56b3fc4594c27761c3_JaffaCakes118

General

Target

0280ca4e2cce5b56b3fc4594c27761c3_JaffaCakes118
Size

68KB
MD5

0280ca4e2cce5b56b3fc4594c27761c3
SHA1

35b33c1a9df311da204d631734a48970265308fb
SHA256

913c24e5fae01022bfa59dfbc6817797c2533c2b2f6ca5cbd33f80e122947442
SHA512

717c8f68b3f5b012c1cc210f9c93415bfa6f2cfa09e7143d6d340d3a11ebf6fe4fdfbae8926c3069fae747eacf3ea15926ab58ae299c221125927a1f71ecf816
SSDEEP

768:uheH61WnsnY25r38akjPDcoNIrKrPAJc1cH83eVNWDD8H4LGgedVocr8xHI:uhlWsY2F3Cjpai4Jc1cH83uWv8H4SFr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0280ca4e2cce5b56b3fc4594c27761c3_JaffaCakes118

Files

0280ca4e2cce5b56b3fc4594c27761c3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

20412ada7a490270c61e74607f52bad0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BackupSeek
BuildCommDCBW
CopyFileExW
CopyFileW
CreateEventA
CreateRemoteThread
DosDateTimeToFileTime
ExitProcess
GetConsoleCP
GetPrivateProfileSectionNamesW
GetPrivateProfileStringA
GetPrivateProfileStructA
GetTapeStatus
GlobalAlloc
HeapWalk
InterlockedCompareExchange
IsValidLocale
SetConsoleActiveScreenBuffer
SetLocaleInfoW
SetPriorityClass
WaitForDebugEvent
WriteConsoleOutputA
WritePrivateProfileStringA

user32

ActivateKeyboardLayout
CharPrevExA
CreateCaret
CreateMenu
DestroyAcceleratorTable
DrawStateW
EditWndProc
ExcludeUpdateRgn
GetClassWord
GetListBoxInfo
GetMenuState
GetUserObjectInformationA
GetWindowDC
HideCaret
OemToCharBuffW
ReplyMessage
SendMessageCallbackA
SendNotifyMessageA
SetWindowLongW
ToUnicode
VkKeyScanExA
keybd_event

gdi32

CreateEnhMetaFileA
CreatePen
EnumEnhMetaFile
FlattenPath
GetAspectRatioFilterEx
GetBkMode
GetMetaFileW
GetObjectA
GetPath
GetROP2
GetRegionData
GetTextFaceW
GetWinMetaFileBits
PolyTextOutW
ResizePalette
ScaleViewportExtEx
SelectClipRgn
SelectPalette
SetDeviceGammaRamp
SetICMMode
SetSystemPaletteUse
SetTextCharacterExtra
TextOutA

Sections

.text
Size: 512B - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

20412ada7a490270c61e74607f52bad0

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 12KB

.data Size: 6KB - Virtual size: 20KB

.rdata Size: - Virtual size: 12KB

.rsrc Size: 5KB - Virtual size: 12KB

.text
Size: 512B - Virtual size: 12KB

.data
Size: 6KB - Virtual size: 20KB

.rdata
Size: - Virtual size: 12KB

.rsrc
Size: 5KB - Virtual size: 12KB