220e881f6ea61303e0bdf59bb245781e_JaffaCakes118

General

Target

220e881f6ea61303e0bdf59bb245781e_JaffaCakes118
Size

228KB
MD5

220e881f6ea61303e0bdf59bb245781e
SHA1

1e9af15281f764fa11b03c6e4158409ee35fb23f
SHA256

2fed826423225a18bcc795ab4eabbc1cd69884c2039e5e691233ac760b270e40
SHA512

1bd6ac23d40e26b5090c09cd78cfd0517ea43bddb720264b545251e93435da76453c4fe2f942603c28da3e33fd256564788ef5bf161f02b7720cd9a7e095274d
SSDEEP

6144:TvVyWyNDzUY8vXIASeOI7BGts9IJvkD6uA7d:BFeDzGPIVxWBsNLf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
220e881f6ea61303e0bdf59bb245781e_JaffaCakes118

Files

220e881f6ea61303e0bdf59bb245781e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

748f4b0f3febe560e98ff89c5321d976

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

CallNamedPipeA
CancelDeviceWakeupRequest
CreateFileA
DefineDosDeviceA
ExitProcess
FreeConsole
FreeEnvironmentStringsA
GetDateFormatA
GetDiskFreeSpaceExW
GetEnvironmentStringsW
GetFileTime
GetProcessTimes
GetUserDefaultLangID
GlobalUnlock
Heap32Next
IsValidCodePage
PeekConsoleInputA
QueryDosDeviceW
SetDefaultCommConfigW
SetEvent
SetSystemTimeAdjustment
SleepEx
TransactNamedPipe
lstrcmpW

user32

BroadcastSystemMessage
ClipCursor
CloseClipboard
CreateDesktopW
CreateDialogIndirectParamW
DdeEnableCallback
DdeInitializeW
EnableScrollBar
EndPaint
EnumDesktopWindows
EnumPropsExW
GetClassLongW
GetForegroundWindow
GetKeyboardLayoutNameA
IMPQueryIMEW
LoadKeyboardLayoutW
MessageBoxA
MessageBoxIndirectW
NotifyWinEvent
OpenWindowStationA
SendIMEMessageExW
SetDlgItemTextW
SetMenuDefaultItem
SetMessageQueue
SetProcessWindowStation
TabbedTextOutA
TranslateAccelerator
wvsprintfA

gdi32

CheckColorsInGamut
CopyEnhMetaFileA
CopyEnhMetaFileW
CreateDCW
DPtoLP
DescribePixelFormat
EndPage
EnumMetaFile
GdiSetBatchLimit
GetBoundsRect
GetColorAdjustment
GetColorSpace
GetICMProfileW
GetLayout
GetRandomRgn
GetTextExtentExPointW
PolyTextOutW
SetBkColor
SetICMProfileA
SetMapperFlags
SetPaletteEntries
SetSystemPaletteUse
SetTextAlign
SetWinMetaFileBits

Sections

.text
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 225KB - Virtual size: 228KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 224KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

748f4b0f3febe560e98ff89c5321d976

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 8KB

.data Size: 225KB - Virtual size: 228KB

.rdata Size: - Virtual size: 12KB

.rsrc Size: 1024B - Virtual size: 224KB

.text
Size: 512B - Virtual size: 8KB

.data
Size: 225KB - Virtual size: 228KB

.rdata
Size: - Virtual size: 12KB

.rsrc
Size: 1024B - Virtual size: 224KB