3025665b763d0a61bc76d6af930ec44a_JaffaCakes118

General

Target

3025665b763d0a61bc76d6af930ec44a_JaffaCakes118
Size

57KB
MD5

3025665b763d0a61bc76d6af930ec44a
SHA1

89c38fdd4aac0c90d1b65bfa1a5720e697c93d1e
SHA256

edb4f2171504fd19be45c3556bc02416afa22371aece031f4eea18514cb8ba5f
SHA512

51843804be9d5f904b3028a3cc318301d3714b8ee031898c5aad3a832040414ec115572a04c82fcad54460773d39665a1b4a681d1a920da4382b7f7064e5db7f
SSDEEP

1536:NF7plCSfVZ+0NBJKmu3S/c4cW/hFq7YGuFSla3+P:77p0yVYiEmui/Qyq7YylauP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3025665b763d0a61bc76d6af930ec44a_JaffaCakes118

Files

3025665b763d0a61bc76d6af930ec44a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9b1cd507ad83fe43bb978ed715df4a56

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileMappingA
DefineDosDeviceA
EnumCalendarInfoExA
EnumResourceNamesW
ExitProcess
GetCurrentProcess
GetShortPathNameW
GetSystemInfo
GetThreadSelectorEntry
GetVolumeInformationA
Heap32First
HeapSize
InterlockedExchange
LocalCompact
PrepareTape
ReadConsoleOutputCharacterA
SetCriticalSectionSpinCount
Thread32Next
TlsGetValue
VirtualFree
_hread
_hwrite
lstrcmpiW

user32

ChildWindowFromPointEx
DdeCmpStringHandles
DdeCreateStringHandleA
DestroyAcceleratorTable
DlgDirSelectComboBoxExW
DragDetect
DrawMenuBar
EndDeferWindowPos
GetClassNameA
GetDCEx
GetDoubleClickTime
GetMenuDefaultItem
GetParent
GetWindowModuleFileNameA
IMPSetIMEW
ImpersonateDdeClientWindow
InsertMenuA
LoadBitmapA
MessageBeep
ModifyMenuA
PostMessageA
RedrawWindow
SendMessageTimeoutA
SetCursorPos
SetScrollInfo
SetTimer
ShowWindowAsync
SwitchToThisWindow
TranslateAccelerator

gdi32

AbortPath
AngleArc
BeginPath
CombineTransform
CreateDIBPatternBrush
CreateDIBitmap
CreateFontA
EndPath
EnumFontFamiliesExA
EnumICMProfilesA
GetBitmapDimensionEx
GetBkMode
GetCurrentObject
GetICMProfileW
GetKerningPairsW
GetMetaFileW
GetTextExtentExPointA
GetWindowOrgEx
LineTo
PlayEnhMetaFileRecord
PlayMetaFile
Polyline
RectInRegion
ResizePalette
SelectClipRgn
SetICMProfileW
TextOutW

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9b1cd507ad83fe43bb978ed715df4a56

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 4KB

.data Size: 8KB - Virtual size: 28KB

.rdata Size: - Virtual size: 12KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 512B - Virtual size: 4KB

.data
Size: 8KB - Virtual size: 28KB

.rdata
Size: - Virtual size: 12KB

.rsrc
Size: 1024B - Virtual size: 4KB