22ae94ffd4b1e66792a090764ae202ef_JaffaCakes118

General

Target

22ae94ffd4b1e66792a090764ae202ef_JaffaCakes118
Size

271KB
MD5

22ae94ffd4b1e66792a090764ae202ef
SHA1

ccba1336a2803e123f6bf32401b33a3ed464e15f
SHA256

fe5349261431828ebc30dce818e7c9ae6badcf97ad0951acea99d64f2b131285
SHA512

8237b625b2582881f9134f5316bcc6bcdbe07733b16c57c88dd907c5caf853bf1e050415aa69922c72c443c35fcef423fd8dd7c87d1b5ab8621fb8d003045a02
SSDEEP

6144:ScGcB2FZyRBqMRuFN6AKLi0GAtXhACHU+db/G9rMnnK8pF8G:bGgaZ4tKsAKLi0nXX/drGSHF8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
22ae94ffd4b1e66792a090764ae202ef_JaffaCakes118

Files

22ae94ffd4b1e66792a090764ae202ef_JaffaCakes118
.exe windows:5 windows x86 arch:x86

5f4a1464e7ff99598bfabc26e4b118f6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetActiveWindow
CharLowerW
RegisterClassExW
keybd_event
EnumThreadWindows
UpdateWindow
GetWindowTextW
InSendMessage
InternalGetWindowText
GetDCEx
DestroyWindow
DrawAnimatedRects
SetWindowLongA
AttachThreadInput
DrawIconEx
UnloadKeyboardLayout
DefWindowProcW
GetClassInfoA
CharUpperBuffW
SetDlgItemTextA
ArrangeIconicWindows
DefFrameProcW
RegisterHotKey
IsCharAlphaNumericW
wvsprintfA
GetAsyncKeyState
DrawIcon
SetCaretPos
TileWindows
GetKeyNameTextW
TabbedTextOutW
GetDC
GetClassLongA
GetMessageTime
GetScrollInfo
InSendMessageEx
GetWindowTextA
GetNextDlgGroupItem

gdi32

GetObjectA
GetStockObject
GetNearestColor
GetTextCharsetInfo
GetLayout
SetViewportOrgEx
GetFontData
SelectClipRgn
FillRgn
GetCurrentPositionEx
BeginPath
GetTextExtentExPointW
RectVisible
GetTextExtentPointA
SetROP2
CreateDIBSection
CreatePatternBrush
GetObjectW

ntdll

memcpy

kernel32

EnumSystemLocalesA
LoadLibraryA
GetFileTime
GetFileAttributesExW
CreateWaitableTimerW
DeleteFileW
GlobalReAlloc
SearchPathA
GetPriorityClass
lstrcpynW
TlsGetValue
SetMailslotInfo
GetShortPathNameW
HeapSize
OpenEventW
SetCommTimeouts
LoadLibraryW
lstrlenW

Exports

Exports

?UDIuJHFhjHJJHFiufYIFYiuyfd@@YGKEPA_WG@Z

Sections

.text
Size: 172KB - Virtual size: 171KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

data
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 78KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5f4a1464e7ff99598bfabc26e4b118f6

Headers

File Characteristics

Imports

user32

gdi32

ntdll

kernel32

Exports

Exports

Sections

.text Size: 172KB - Virtual size: 171KB

data Size: 18KB - Virtual size: 17KB

.rsrc Size: 78KB - Virtual size: 80KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 172KB - Virtual size: 171KB

data
Size: 18KB - Virtual size: 17KB

.rsrc
Size: 78KB - Virtual size: 80KB

.reloc
Size: 2KB - Virtual size: 1KB