384f3b1066e7e8b1fa61ddd452b72001_JaffaCakes118

General

Target

384f3b1066e7e8b1fa61ddd452b72001_JaffaCakes118
Size

566KB
MD5

384f3b1066e7e8b1fa61ddd452b72001
SHA1

98d9b512cd7a6d02c453d155a6fee71a7850b43c
SHA256

941bc0e172d7ef1c5f28710f5778dd8b7f6a947624a25df397465e6ad4ba6cb9
SHA512

c3c0b9cd07e0690208b01fbb5b4f1d7bcc23ee6ddcc1908d4749bcba08c8564a75e256396bbe6f93f817c3730b3264c83950d53e96a2608974a6adddd93f64e7
SSDEEP

12288:mqIX5NldWsg3KF0TAn5EPRz5S+sLIBVy6ckXtzm2kffpgCZRCmV:mqIXTldWhaF0TAnePRdjBncksvVCE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
384f3b1066e7e8b1fa61ddd452b72001_JaffaCakes118

Files

384f3b1066e7e8b1fa61ddd452b72001_JaffaCakes118
.exe windows:1 windows x86 arch:x86

cd2bdc639cbf133da97f08ba16747b9d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_GetImageRect
ImageList_DragShowNolock
ImageList_Merge
ImageList_DragMove
ImageList_Duplicate
ImageList_DrawIndirect
FlatSB_SetScrollPos
ImageList_EndDrag
InitCommonControlsEx
ImageList_GetIconSize
ImageList_SetFlags
FlatSB_GetScrollRange
ImageList_Remove
FlatSB_SetScrollProp
InitCommonControls

kernel32

GetConsoleAliasesLengthW
VirtualFree
GetHandleInformation
GetProcessIoCounters
FatalAppExitW
GetProcAddress
CancelWaitableTimer
GetCurrentDirectoryW
GetProfileStringA
LoadLibraryA
EnumResourceTypesA
SetProcessAffinityMask
GetFileSize
VirtualAlloc
GetTickCount
CreateProcessW
CallNamedPipeW
VirtualProtect
LocalLock
TransactNamedPipe
GetConsoleAliasExesLengthW

user32

DrawCaptionTempW
SetClipboardViewer
GetUserObjectInformationW
GetMessageA
GetTitleBarInfo
GrayStringA
GetSubMenu
EnumThreadWindows
DialogBoxIndirectParamW
CreateIconFromResource
CreateWindowStationA
CallMsgFilterA
DdeEnableCallback

gdi32

FontIsLinked
GetGlyphOutlineA
SetBrushOrgEx
CombineTransform
EngMultiByteToUnicodeN
EngStrokeAndFillPath
SetBitmapBits
FillPath
CopyMetaFileW
GdiGetPageCount
GetPixel
GdiReleaseLocalDC
GetEnhMetaFilePixelFormat
GdiEntry8

crtdll

_fcloseall
_lrotr
_mbsnbcpy
_wcsdup
_mktemp
_lseek
_mbsupr
_lfind
__iscsymf
_purecall
_amsg_exit

Sections

.text
Size: 92KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

cd2bdc639cbf133da97f08ba16747b9d

Headers

File Characteristics

Imports

comctl32

kernel32

user32

gdi32

crtdll

Sections

.text Size: 92KB - Virtual size: 92KB

.data Size: - Virtual size: 8KB

.idata Size: 4KB - Virtual size: 4KB

.text
Size: 92KB - Virtual size: 92KB

.data
Size: - Virtual size: 8KB

.idata
Size: 4KB - Virtual size: 4KB