2e75c3db9ea3ae1b6e93d99e45892d45_JaffaCakes118

General

Target

2e75c3db9ea3ae1b6e93d99e45892d45_JaffaCakes118
Size

455KB
MD5

2e75c3db9ea3ae1b6e93d99e45892d45
SHA1

fd95f7c6e77cd0d75c9ffa4b8cc62f5d22329fbf
SHA256

3964283f597086f0959dc8debfbfe558060d39e2d4ee63c4ee346039f75fe4fa
SHA512

c1265c37d2208cb2f8abe3752c856fb6664687deea5fc830ab3a5a38eee6a0acc088ec1ce2ec8ee24b60897ceb6819e7bb791ef2d55d1f2fbedf283ba378d735
SSDEEP

12288:izflLNR+oiUVKWxseLw9NMhfex1KN00T8jLu:OlxR+oHKHeLw9jx13Tu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2e75c3db9ea3ae1b6e93d99e45892d45_JaffaCakes118

Files

2e75c3db9ea3ae1b6e93d99e45892d45_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f4f1e4b8f759485ba54d5594ee5ac0ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

AddAtomW
AllocConsole
CancelIo
ClearCommBreak
DefineDosDeviceA
EnumSystemLocalesW
ExitProcess
GetMailslotInfo
GetQueuedCompletionStatus
GetStringTypeA
GlobalFree
GlobalUnfix
HeapDestroy
InitializeCriticalSectionAndSpinCount
IsBadReadPtr
PeekConsoleInputA
ReadConsoleOutputAttribute
ReadFileEx
SetNamedPipeHandleState
SetProcessWorkingSetSize
SetThreadAffinityMask
lstrlen

user32

ChangeClipboardChain
CharNextExA
CharToOemBuffA
ChildWindowFromPoint
CreateDialogIndirectParamA
DdeAccessData
DeleteMenu
DragDetect
EnumDisplayMonitors
GetClientRect
GetDlgItemTextW
GetKeyboardType
GetUpdateRgn
GetWindowContextHelpId
HideCaret
InternalGetWindowText
LoadAcceleratorsA
MessageBoxA
MessageBoxIndirectA
RemoveMenu
SetWindowLongA
SetWindowsHookExA
UnloadKeyboardLayout

gdi32

Arc
CheckColorsInGamut
CopyMetaFileW
CreateDCW
CreateDIBitmap
CreateFontIndirectW
CreateICA
CreateMetaFileA
CreateRectRgn
EnumEnhMetaFile
EnumFontFamiliesW
GetCharWidthFloatW
GetEnhMetaFilePaletteEntries
GetGlyphOutlineA
GetLayout
GetMetaFileA
GetTextCharsetInfo
GetTextMetricsA
PolyBezierTo
PolyPolygon
PolylineTo
SetArcDirection
SetDIBColorTable
UpdateColors

Sections

.code
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 432KB - Virtual size: 448KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 312KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f4f1e4b8f759485ba54d5594ee5ac0ce

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.code Size: 4KB - Virtual size: 4KB

.data Size: 432KB - Virtual size: 448KB

.rdata Size: 512B - Virtual size: 8KB

.rsrc Size: 12KB - Virtual size: 312KB

.code
Size: 4KB - Virtual size: 4KB

.data
Size: 432KB - Virtual size: 448KB

.rdata
Size: 512B - Virtual size: 8KB

.rsrc
Size: 12KB - Virtual size: 312KB