221f3b429aae70fc139bf7fd4221a875_JaffaCakes118

General

Target

221f3b429aae70fc139bf7fd4221a875_JaffaCakes118
Size

207KB
MD5

221f3b429aae70fc139bf7fd4221a875
SHA1

462c58c5ec274450afb7a4565ab3155bb2079f41
SHA256

918ed73b49b11063ef57ee1390e7eb56781d7e1b23dbc1a174e30f2fdf37a526
SHA512

86d6b89f0d910f76703fe26cc158332fd4f1e4bea24cfdd9bcd486811e3aaefeb7377a5a0d14281d9ff518943fda5484b06ee1359f3a5dd165f94d61e3fd634e
SSDEEP

3072:fpKPGYudJ44doKsvz2zZ8PFqxu++ZpXZCG/G9hvB1ljz+s9QlOVt3yI0bcuxrEvF:fpKOYur44EvizZ88Pw4GwvBmItF0bDmF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
221f3b429aae70fc139bf7fd4221a875_JaffaCakes118

Files

221f3b429aae70fc139bf7fd4221a875_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b4de34eeb97d236672794ca4b90a32d3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CharLowerA
CreateMenu
CreateWindowExA
DrawTextA
EnableWindow
EnumThreadWindows
FillRect
GetActiveWindow
GetClassInfoA
GetMenuStringA
GetParent
GetScrollRange
GetWindow
GetWindowTextA
GetWindowThreadProcessId
IsZoomed
KillTimer
OemToCharA
PostMessageA
SetClipboardData
SetCursor
SetFocus
SetScrollRange
SetTimer
TrackPopupMenu
wsprintfA

kernel32

CreateFileMappingA
DuplicateHandle
GetConsoleOutputCP
GetCurrentThread
GetFileSize
GetProcAddress
GetTimeZoneInformation
GlobalAddAtomA
GlobalUnlock
IsDBCSLeadByte
LoadLibraryW
SetCurrentDirectoryA
SystemTimeToFileTime
TlsFree

gdi32

BitBlt
Chord
CopyMetaFileA
CreateCompatibleBitmap
CreateDIBSection
EndPath
ExtEscape
GetBitmapBits
GetBkMode
GetEnhMetaFileBits
GetEnhMetaFilePaletteEntries
GetNearestColor
GetPaletteEntries
GetStretchBltMode
GetTextAlign
GetTextColor
GetTextExtentPoint32A
GetTextExtentPointW
OffsetWindowOrgEx
SelectClipRgn
SetROP2

Sections

.text
Size: 88KB - Virtual size: 87KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 98KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

kdilhYvs
Size: 512B - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b4de34eeb97d236672794ca4b90a32d3

Headers

File Characteristics

Imports

user32

kernel32

gdi32

Sections

.text Size: 88KB - Virtual size: 87KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 98KB - Virtual size: 97KB

.rsrc Size: 18KB - Virtual size: 17KB

kdilhYvs Size: 512B - Virtual size: 120KB

.text
Size: 88KB - Virtual size: 87KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 98KB - Virtual size: 97KB

.rsrc
Size: 18KB - Virtual size: 17KB

kdilhYvs
Size: 512B - Virtual size: 120KB