17f57e8deacc4d471ccd79ab7fc51574_JaffaCakes118

General

Target

17f57e8deacc4d471ccd79ab7fc51574_JaffaCakes118
Size

28KB
MD5

17f57e8deacc4d471ccd79ab7fc51574
SHA1

429ee5832fc8fcf13a322473e44df9c2f33d0231
SHA256

743d947488e387185d5207853a1247bed03960ee3353f20e097c67d8e1dc5e4b
SHA512

4ea9d7f805e011cdbdff41ff565b9310cb67d4f8b3993e6716fa143e38d04f9a08af41651419e9db3cdfff9eea4ff1582a5015419d9c4772246c9c47a743055c
SSDEEP

768:JovcW0mqHzI4ZgZMOpT6H8b2XNeb8hkgFXrN:yvcW5oFVOpTw8iXEbfg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
17f57e8deacc4d471ccd79ab7fc51574_JaffaCakes118

Files

17f57e8deacc4d471ccd79ab7fc51574_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ac4a3ce985f9dbe64e4603dfb88d4656

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

SetCurrentDirectoryA
ResumeThread
GetStdHandle
EnumDateFormatsExW
ShowConsoleCursor
GetFileSize
CreateTimerQueue
GetCurrentProcess
FillConsoleOutputAttribute
EnumTimeFormatsW
FindFirstFileExA
OpenMutexA
WritePrivateProfileStructW
HeapAlloc
EnumResourceTypesA
DisableThreadLibraryCalls
GetCommTimeouts
SetCommTimeouts
CreateJobObjectA
GetACP
Heap32ListNext
ExitProcess
GlobalHandle
SuspendThread
Heap32First
ReadFileEx
ContinueDebugEvent

user32

GetUserObjectInformationW
SetProcessDefaultLayout
CallMsgFilterA
MessageBeep
SetDlgItemTextA
VkKeyScanExW
LoadBitmapW
GetForegroundWindow
GetWindowWord
IsCharAlphaNumericW
DrawIcon
CreateDialogParamW
OemToCharBuffW
DrawAnimatedRects
SetTaskmanWindow
GetKeyboardLayout
CharNextExA
SwitchToThisWindow
ResolveDesktopForWOW
SetParent
UnpackDDElParam
DdeDisconnect
RealGetWindowClass
DdeGetData
GetMenuCheckMarkDimensions
InsertMenuItemA
SetMenuInfo

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 19KB - Virtual size: 60KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

ac4a3ce985f9dbe64e4603dfb88d4656

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 8KB - Virtual size: 8KB

.data Size: 19KB - Virtual size: 60KB

.rsrc Size: 512B - Virtual size: 4KB

.text
Size: 8KB - Virtual size: 8KB

.data
Size: 19KB - Virtual size: 60KB

.rsrc
Size: 512B - Virtual size: 4KB