2755804da11030de23f705e1d526e171_JaffaCakes118

General

Target

2755804da11030de23f705e1d526e171_JaffaCakes118
Size

91KB
MD5

2755804da11030de23f705e1d526e171
SHA1

e4ddbb8466491817b50dfe9fd181391f1e2ebc82
SHA256

5dc371d9bfa0e2a858105788a1c615046fe6b1655fc7a468fb38e57b484ed23f
SHA512

1282e78a9ef743d5fa9e4458bcc27f299172c0e9f94bdb13e3ce0b6eee30f9d515ca9d86fe99c88f55043b111ea7920f7e7f67709c5f3e5e007a2a2a839ed25d
SSDEEP

1536:D/q3NAN/9TOhBJ0DBrC56Q/IfB+FGD4G2SrR012vXkvKN49H:DAMBOU85oZ0G2ilvXkOaH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2755804da11030de23f705e1d526e171_JaffaCakes118

Files

2755804da11030de23f705e1d526e171_JaffaCakes118
.exe windows:4 windows x86 arch:x86

38fd921c446a96b23b3438e82d074123

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

OpenConsoleW
CallNamedPipeW
IsProcessorFeaturePresent
VirtualProtect
SetPriorityClass
SetConsoleMode
EraseTape
GetConsoleCommandHistoryLengthW
BuildCommDCBA
SystemTimeToTzSpecificLocalTime
FreeLibrary
OutputDebugStringW
CopyFileW
SizeofResource
EnumSystemCodePagesA
CreateTapePartition
GetConsoleAliasesLengthA
GetLocaleInfoA
GetLastError

user32

DestroyMenu
MessageBoxIndirectA
RegisterShellHookWindow
DialogBoxParamW
CreateCursor
CharPrevW
SetMenu
DdeKeepStringHandle
RegisterSystemThread
EnumDisplaySettingsExW
FindWindowExW
GetInputDesktop
GetCursorInfo
DdeUninitialize
GetListBoxInfo
MBToWCSEx
CloseDesktop
LoadStringW
SetWindowPlacement
CallWindowProcW
GrayStringW

gdi32

InvertRgn
DrawEscape
EngDeleteSurface
SetROP2
GdiResetDCEMF
EngLineTo
EngStretchBltROP
SetWinMetaFileBits
GdiEntry11
OffsetWindowOrgEx
GetTextMetricsA
EngMarkBandingSurface
EngTextOut
GetCharABCWidthsFloatW
GetCharacterPlacementW
GetDCPenColor
GdiCleanCacheDC
GetStringBitmapA
GetAspectRatioFilterEx

comdlg32

ChooseColorW
PrintDlgExA
ReplaceTextW
GetSaveFileNameA
ChooseFontA
ReplaceTextA
GetFileTitleW
PrintDlgExW
FindTextA
GetSaveFileNameW
GetFileTitleA
PageSetupDlgA

Sections

.text
Size: 4KB - Virtual size: 176KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

38fd921c446a96b23b3438e82d074123

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

Sections

.text Size: 4KB - Virtual size: 176KB

.data Size: 84KB - Virtual size: 84KB

.idata Size: 2KB - Virtual size: 4KB

.text
Size: 4KB - Virtual size: 176KB

.data
Size: 84KB - Virtual size: 84KB

.idata
Size: 2KB - Virtual size: 4KB