1bf62f0bf264766541b15aa15dec22d6_JaffaCakes118

General

Target

1bf62f0bf264766541b15aa15dec22d6_JaffaCakes118
Size

42KB
MD5

1bf62f0bf264766541b15aa15dec22d6
SHA1

acdcc1bdde76b4ba8b3e0e7fa79b8233ad1c952f
SHA256

0dfa341d2151fa0afe164892a0fb3e28fbe74ceb6f00b7a0e97562b8d1733bff
SHA512

4872f65580ac2754376d747620fb88b07ba2f00c458d4860aa86685338d1770f0b4d71d99d50a5b0ed591172c092f3cdeac537266bae1d7f169ad78eb0904915
SSDEEP

768:vgiOj/4cksfWiTxGjXLozVs0nbGhGVQntOobcxtRN933nQqQQ5:YrfsozDb70tOoARN9J5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1bf62f0bf264766541b15aa15dec22d6_JaffaCakes118

Files

1bf62f0bf264766541b15aa15dec22d6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

14c4713fd18828625d58dc3a1d80081e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
VirtualProtect
FindClose
CancelWaitableTimer
FindFirstFileA
GetLargestConsoleWindowSize
CloseConsoleHandle
GetConsoleCommandHistoryLengthW
LoadLibraryW
SetConsoleHardwareState
WriteConsoleInputVDMA
GetTimeFormatW
Thread32Next
PrivMoveFileIdentityW
ResetWriteWatch
GetPrivateProfileStringW
ReplaceFileW
SetLastConsoleEventActive
GetTapeStatus
EnterCriticalSection

user32

DestroyWindow
GetSystemMenu
DeviceEventWorker
DdeGetData
IMPQueryIMEW
IsDialogMessageW
SetWindowsHookA
RegisterLogonProcess
SetWindowsHookExA
SetWindowTextA
ClientThreadSetup
CreateMDIWindowW
GetPropA
SetDlgItemTextA
GetProgmanWindow
OpenWindowStationA
LoadBitmapW
CallMsgFilterA
BeginPaint
SetSysColors

gdi32

PathToRegion
GetMetaRgn
DeleteDC
EnumFontsW
OffsetViewportOrgEx
TextOutW
GetStretchBltMode
ChoosePixelFormat
SetWindowOrgEx
EngLockSurface
GetClipRgn
NamedEscape
EngCreateBitmap
SetVirtualResolution
SetDIBits
PolyDraw
FONTOBJ_pifi
GetTextCharacterExtra
GetRelAbs
CreateDCW
GetGlyphOutlineWow
SetMetaRgn
CreatePen
SetTextJustification
AnimatePalette
GetBoundsRect
ArcTo
GdiCreateLocalEnhMetaFile
EngMultiByteToWideChar
GdiSetBatchLimit

comdlg32

ChooseFontW
LoadAlterBitmap
GetOpenFileNameA
GetFileTitleA
dwOKSubclass
ChooseColorW
PrintDlgW
PageSetupDlgW
ReplaceTextW
FindTextA
PrintDlgExA
WantArrows
GetSaveFileNameA

Sections

.text
Size: 4KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 34KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

14c4713fd18828625d58dc3a1d80081e

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

Sections

.text Size: 4KB - Virtual size: 72KB

.data Size: 34KB - Virtual size: 36KB

.idata Size: 3KB - Virtual size: 4KB

.text
Size: 4KB - Virtual size: 72KB

.data
Size: 34KB - Virtual size: 36KB

.idata
Size: 3KB - Virtual size: 4KB