09081fb93d4c527b0f24f30c3066764b_JaffaCakes118

General

Target

09081fb93d4c527b0f24f30c3066764b_JaffaCakes118
Size

110KB
MD5

09081fb93d4c527b0f24f30c3066764b
SHA1

f8cd2c01930dcfd8487b80d346a5719d09036e14
SHA256

616e22f84fa92ab9ba684e908ce34ce5a6681b535bdd6c7a94ce151eb08bbdd3
SHA512

3659f9bab96a12f050b493a0fd718453f62f5f263e1bc636fa15a3802a234ef5b5ef6b7cb4d6166ced8fd6538480baaa3edbea656b48535cc4a92bf521315ef1
SSDEEP

3072:QVKgzYdQsiTtHlO30IxDOT5ThQ9ag6i69D2:CzYusiTfhUDOT5Th669D

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
09081fb93d4c527b0f24f30c3066764b_JaffaCakes118

Files

09081fb93d4c527b0f24f30c3066764b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

055da24f96ab1f0240681891f0e8f4d1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TlsFree
GetModuleHandleW
GetVersionExW
CreateActCtxW
GetEnvironmentVariableA
GetFileAttributesExW
IsValidCodePage
GetUserDefaultLangID
GetDateFormatA
IsBadWritePtr
GetModuleHandleExA
DeleteFileA
VirtualAllocEx
lstrlenA
GetFileAttributesA
SetEnvironmentVariableA
CreatePipe
CreateActCtxA
lstrcmpiA
CreateSemaphoreA
OutputDebugStringA
FindAtomW

user32

LoadCursorA
LoadCursorW
CreateWindowExW
GetWindowRect
IsCharLowerA
SetDlgItemTextW
DefWindowProcA
GetDC
TranslateMessageEx
CreateWindowExA
SetCursor
SendDlgItemMessageA
SetWindowLongA
DialogBoxParamA
DispatchMessageA
GetSysColorBrush
SendMessageW
ShowWindow
GetClientRect
LoadBitmapA
DestroyWindow
CharNextA
GetParent
BeginPaint
SendDlgItemMessageW
GetDlgItemTextA
PeekMessageA
EnableWindow
DispatchMessageW
IsWindow
CharPrevA
SetWindowPos
DefWindowProcW

gdi32

CreateEllipticRgn
EnumFontsW
Rectangle
GetNearestPaletteIndex
GetNearestColor

Sections

.text
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 56KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

055da24f96ab1f0240681891f0e8f4d1

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 44KB - Virtual size: 43KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 56KB - Virtual size: 68KB

.rsrc Size: 6KB - Virtual size: 6KB

.edata Size: 1024B - Virtual size: 4KB

.text
Size: 44KB - Virtual size: 43KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 56KB - Virtual size: 68KB

.rsrc
Size: 6KB - Virtual size: 6KB

.edata
Size: 1024B - Virtual size: 4KB