289a4be8f8db5d8c32b5f52508987176_JaffaCakes118

General

Target

289a4be8f8db5d8c32b5f52508987176_JaffaCakes118
Size

77KB
MD5

289a4be8f8db5d8c32b5f52508987176
SHA1

5eab057a0b0809b73a3c809e0ba937466660e9cd
SHA256

64964543095816d5074fef2e83616f829e39c2061a77fdd13ab38474be52d07b
SHA512

31c62d211efc38182fccf21d490cb1abd194af292bc1b12ded7cad9632a8d7225a1134fe46116534bdeb8bd1d4e40d67e0301fb9c50b49853c4d3376099f2b4a
SSDEEP

1536:xvIhVAK9nuRfeIMD/EvI2lvx563fDtbfuPHUjnYjV/d/5b5FNU3BsNub7NvE:xvI8zvHvIQq3LAga4E

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
289a4be8f8db5d8c32b5f52508987176_JaffaCakes118

Files

289a4be8f8db5d8c32b5f52508987176_JaffaCakes118
.exe windows:4 windows x86 arch:x86

cdb50e98057423c7cb707dbbc511f0df

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Beep
CloseHandle
CompareStringA
ContinueDebugEvent
EndUpdateResourceW
ExitProcess
FindClose
FindFirstFileA
GetBinaryTypeW
GetConsoleMode
GetModuleHandleW
GetProcessVersion
GetSystemTime
GetTempFileNameA
GetThreadContext
HeapCreate
HeapUnlock
LocalLock
LocalSize
OpenSemaphoreW
PrepareTape
RequestWakeupLatency
RtlMoveMemory
RtlUnwind
SetEndOfFile
SetNamedPipeHandleState
SetTapePosition
WaitNamedPipeA
_hread

user32

BringWindowToTop
CascadeWindows
CharToOemA
CharUpperA
CloseDesktop
CloseWindowStation
CreateIconIndirect
DdeCreateDataHandle
DdeKeepStringHandle
DrawCaption
DrawMenuBarTemp
EnumDesktopWindows
GetClipboardFormatNameW
GetKBCodePage
GetMessageExtraInfo
GetPropW
InSendMessage
LoadMenuIndirectA
SendNotifyMessageA
SetMenuItemInfoA
SetProcessWindowStation
SetPropW
SetTimer
SetWindowContextHelpId
ShowWindow
TranslateAcceleratorW

gdi32

BitBlt
CheckColorsInGamut
ChoosePixelFormat
CreatePolygonRgn
ExtCreatePen
ExtTextOutW
GdiComment
GetCharWidth32A
GetCharacterPlacementA
GetEnhMetaFileW
GetMetaFileW
GetROP2
GetRandomRgn
GetTextCharacterExtra
MoveToEx
OffsetViewportOrgEx
Rectangle
SetICMProfileA
SetMiterLimit
SetPixelV
SetViewportOrgEx
StartDocW

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 56KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cdb50e98057423c7cb707dbbc511f0df

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 4KB - Virtual size: 4KB

.data Size: 56KB - Virtual size: 60KB

.rsrc Size: 12KB - Virtual size: 40KB

.text
Size: 4KB - Virtual size: 4KB

.data
Size: 56KB - Virtual size: 60KB

.rsrc
Size: 12KB - Virtual size: 40KB