328d9779f76cafd59b9a556c45041cac_JaffaCakes118

General

Target

328d9779f76cafd59b9a556c45041cac_JaffaCakes118
Size

42KB
MD5

328d9779f76cafd59b9a556c45041cac
SHA1

5130c83f7e2c4632eb9722bb08df81bd6869b67d
SHA256

b83f4bd26dfeccc8d840dd21e637b7aad30006d94d6aef318b7b79aa6c5ee512
SHA512

760119f8cea10b1bf59ce90aa69c744e32cbfe4b13bb97bdf51abc498e69c2bdf9b5ddeba84cfc4a82d7acc48c2d09ef369068693473b1f785296507d440a53a
SSDEEP

768:BY7TWhmnvF1Ct9Lv4B84k3m4bq/3BRP/Q2FKB2EHb4jVtT9XaZYAe:0W4CrY8h24buRHQ2YBHHcjjlape

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
328d9779f76cafd59b9a556c45041cac_JaffaCakes118

Files

328d9779f76cafd59b9a556c45041cac_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0412e51623a4a5f4a6ffadc38c49a82b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BackupWrite
DeleteAtom
DeleteFiber
EnumTimeFormatsW
ExitProcess
GetDateFormatW
GetDiskFreeSpaceA
GetDiskFreeSpaceW
GetNumberOfConsoleInputEvents
GetStringTypeExA
GetSystemDefaultLangID
GetThreadLocale
GetTimeFormatW
Heap32ListNext
PeekNamedPipe
SearchPathW
SetProcessAffinityMask
TlsGetValue
VerLanguageNameW
WritePrivateProfileSectionA
WritePrivateProfileStructA
WriteProfileStringA
_lread

user32

CharPrevA
CharUpperA
CreateDialogIndirectParamW
DdeReconnect
DefDlgProcA
DlgDirListW
DlgDirSelectExA
GetInputState
GetProcessWindowStation
IsClipboardFormatAvailable
IsWindowEnabled
LoadKeyboardLayoutW
MessageBoxA
MoveWindow
OemToCharBuffA
RegisterClassExW
SetClipboardViewer
SetKeyboardState
SetMessageExtraInfo
SetUserObjectSecurity
SetWindowPlacement
SetWindowsHookA
TabbedTextOutW
UnionRect
UnlockWindowStation
wvsprintfA

gdi32

AddFontResourceW
AnimatePalette
CreateBrushIndirect
CreateHalftonePalette
DeleteColorSpace
EnumMetaFile
GetArcDirection
GetAspectRatioFilterEx
GetBitmapBits
GetBkColor
GetCharWidthW
GetDCOrgEx
GetGlyphOutlineW
GetTextColor
GetTextMetricsA
LPtoDP
LineTo
PolyPolyline
PolylineTo
RoundRect
SetDIBitsToDevice
SetFontEnumeration
SetGraphicsMode
SetICMMode
SetMagicColors
SetMetaFileBitsEx
SetRectRgn
SetWindowExtEx
TranslateCharsetInfo

Sections

.text
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 41KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0412e51623a4a5f4a6ffadc38c49a82b

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 8KB

.data Size: 41KB - Virtual size: 48KB

.rdata Size: - Virtual size: 8KB

.rsrc Size: - Virtual size: 12KB

.text
Size: 512B - Virtual size: 8KB

.data
Size: 41KB - Virtual size: 48KB

.rdata
Size: - Virtual size: 8KB

.rsrc
Size: - Virtual size: 12KB