05fe912585952737d1420870dca24a24_JaffaCakes118

General

Target

05fe912585952737d1420870dca24a24_JaffaCakes118
Size

43KB
MD5

05fe912585952737d1420870dca24a24
SHA1

bf4191832a3c8955f40600df1e406b1ae3571f1f
SHA256

0b855a97f6548c0740538726e1eeeb590623a5eaa73ddd02f36911bc5e3aedf3
SHA512

d9ded9e54391cda13f755b47796599180dca18048c7b03fa2ce570b86f2ac0c6df3a038090aaf67e2334e3711591651fd3c5a0806d788d30ebe3c09c77a83b16
SSDEEP

768:V728LuIdozKIPOUgxnV9+Tx3UqDwlR7464hGx2oDD/mm0ZvqY:M8LgWIP8xaTxkgw972oDD/8r

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
05fe912585952737d1420870dca24a24_JaffaCakes118

Files

05fe912585952737d1420870dca24a24_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0db6b498f10289f6375b99c4aca21252

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

AddAtomW
BeginUpdateResourceA
CopyFileA
DeleteCriticalSection
EndUpdateResourceA
EnumCalendarInfoExA
ExitProcess
FindFirstChangeNotificationA
GetTempFileNameA
GetThreadPriorityBoost
GlobalGetAtomNameW
HeapFree
OpenEventW
ScrollConsoleScreenBufferW
SearchPathA
SetCommBreak
SetCriticalSectionSpinCount
TerminateThread
UTRegister
lstrcmp
lstrcpy
lstrlenA

user32

AttachThreadInput
BeginDeferWindowPos
ChangeDisplaySettingsW
DdeFreeStringHandle
DdeUnaccessData
EnumPropsA
EnumPropsW
FindWindowExW
FreeDDElParam
GetAsyncKeyState
GetCursorPos
GetDlgCtrlID
GetInputState
GetKeyboardState
GetListBoxInfo
GetMenuStringW
GetMonitorInfoW
GetQueueStatus
GetUserObjectSecurity
IntersectRect
InvertRect
LoadStringA
OemToCharW
SetClipboardViewer
SetMenuInfo
SetWindowRgn
SwitchDesktop
ValidateRect

gdi32

AnimatePalette
CreateBrushIndirect
CreateDCW
CreateEllipticRgnIndirect
DPtoLP
DescribePixelFormat
GetCurrentObject
GetEnhMetaFileHeader
GetFontData
GetObjectA
GetTextCharsetInfo
GetTextExtentExPointA
OffsetWindowOrgEx
SetDIBColorTable
SetEnhMetaFileBits
SetMetaFileBitsEx
SetPixel
SetPixelV
SetTextColor
SetWindowOrgEx
StretchDIBits

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 34KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xdata
Size: 4KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

0db6b498f10289f6375b99c4aca21252

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 4KB

.data Size: 34KB - Virtual size: 36KB

.xdata Size: 4KB - Virtual size: 16KB

.text
Size: 512B - Virtual size: 4KB

.data
Size: 34KB - Virtual size: 36KB

.xdata
Size: 4KB - Virtual size: 16KB