34d9f331faec2933285cc63aaa17420c_JaffaCakes118

General

Target

34d9f331faec2933285cc63aaa17420c_JaffaCakes118
Size

91KB
MD5

34d9f331faec2933285cc63aaa17420c
SHA1

ec27b1ec91ece5fd5d043bab95a1a5e7bdaab7ec
SHA256

39ea699b01adfd8fb414705ecf21155fbe949aafa0b2feebfcf8159bfebb3b0d
SHA512

d34800d55965061e76bb5f0fd64c04c861e45dc89453373c77dcc76fb853ecbec83ab4ae19d8dc616c4f022373eebbf1e571e8c57b142ce20211d2c2a99a899e
SSDEEP

1536:pYijJqHjObZCi3BctfnaI1VvocIV/0LmzFouzKmy3GOd8P8:pYij0D0ZWnDrw/pomRu3GOd28

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
34d9f331faec2933285cc63aaa17420c_JaffaCakes118

Files

34d9f331faec2933285cc63aaa17420c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f81211d56dfaba28045422090b66e3e8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetLastError
GetHandleInformation
SetConsoleFont
GetVolumeNameForVolumeMountPointW
GetLocaleInfoW
HeapCreateTagsW
IsProcessorFeaturePresent
UnregisterWaitEx
GlobalMemoryStatus
FindNextVolumeA
WriteProfileSectionA
lstrlenA
SetCPGlobal
VirtualProtect
GetStringTypeExA

user32

DestroyMenu
SubtractRect
ShowScrollBar
GetTabbedTextExtentW
IsCharAlphaNumericA
SetProcessDefaultLayout
SetLayeredWindowAttributes
LoadBitmapA
GetWindowLongA
SetUserObjectInformationW
SetShellWindowEx
GetMessageW

gdi32

CreateScalableFontResourceA
OffsetWindowOrgEx
CLIPOBJ_bEnum
EngFindResource
GetLogColorSpaceW
EnumFontFamiliesA
GetRasterizerCaps
GetEnhMetaFileHeader
GetMetaFileBitsEx
SetLayoutWidth
GetTextCharset

comdlg32

PrintDlgExW
FindTextW
GetSaveFileNameA
ChooseColorW
LoadAlterBitmap
PageSetupDlgW
dwLBSubclass
GetFileTitleW
PrintDlgW
GetSaveFileNameW
PrintDlgA
GetOpenFileNameW
ChooseColorA
PageSetupDlgA

Sections

.text
Size: 4KB - Virtual size: 176KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f81211d56dfaba28045422090b66e3e8

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

Sections

.text Size: 4KB - Virtual size: 176KB

.data Size: 84KB - Virtual size: 84KB

.idata Size: 2KB - Virtual size: 4KB

.text
Size: 4KB - Virtual size: 176KB

.data
Size: 84KB - Virtual size: 84KB

.idata
Size: 2KB - Virtual size: 4KB