3933495c842739430bcca4954a4b1845_JaffaCakes118

General

Target

3933495c842739430bcca4954a4b1845_JaffaCakes118
Size

9KB
MD5

3933495c842739430bcca4954a4b1845
SHA1

6b229defe25bf247824e60985ccf24108eafccd2
SHA256

e50ceaa3f5a2797a228bc9971a319416eaa8fc74004ef8d7681833ae587bbbeb
SHA512

4fb0c8a1281a78543f100c235ff8ed44954f51382ce4e6660dec50a28af3c4e8b92c02afa83a66d434befc6f50f1912c8d14666c5012007e85f07b5db6962422
SSDEEP

192:uM6+6GhYLmPnnA7b9NsqiUbCQy2R6Chhhsoth3DBaKUHUix0HbQ:uNTLmv6/ptOT2/zhsElD470i+7Q

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3933495c842739430bcca4954a4b1845_JaffaCakes118

Files

3933495c842739430bcca4954a4b1845_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b52db162d986a644a1a6f6889b731601

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BuildCommDCBW
CreateFiber
CreateIoCompletionPort
DisconnectNamedPipe
EnumResourceLanguagesW
ExitProcess
GetConsoleTitleW
GetDiskFreeSpaceExA
GetDiskFreeSpaceExW
GetFileType
GetProcessShutdownParameters
GetProfileSectionW
GetVersionExA
GetWriteWatch
GlobalDeleteAtom
IsProcessorFeaturePresent
LoadLibraryW
LocalFileTimeToFileTime
LockResource
MoveFileExA
PeekConsoleInputW
ReadDirectoryChangesW
SetConsoleWindowInfo
SetEndOfFile
SetEnvironmentVariableW
SetUnhandledExceptionFilter

user32

CheckRadioButton
CopyAcceleratorTableA
DragObject
EndDialog
EndPaint
EnumWindows
GetDCEx
GetKeyNameTextA
GetUserObjectInformationW
HiliteMenuItem
InternalGetWindowText
InvertRect
IsCharUpperW
LoadIconA
LoadMenuW
MessageBoxW
OpenClipboard
RegisterClassExW
RegisterClipboardFormatA
SendDlgItemMessageA
SetClassLongW
SwitchToThisWindow
TrackPopupMenu
WindowFromDC

gdi32

AnimatePalette
CombineRgn
CopyMetaFileW
CreateColorSpaceA
CreatePenIndirect
DeleteEnhMetaFile
EndPage
GetEnhMetaFileHeader
GetFontData
GetKerningPairs
GetLayout
GetMapMode
GetObjectW
GetOutlineTextMetricsW
GetPolyFillMode
GetTextCharacterExtra
GetTextExtentExPointA
GetWindowExtEx
PolyPolygon
PolyTextOutW
SaveDC
SelectClipRgn
SetLayout
SetMiterLimit
SetViewportOrgEx
SetWindowOrgEx
StretchDIBits
StrokeAndFillPath

Sections

.text
Size: 512B - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b52db162d986a644a1a6f6889b731601

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 16KB

.data Size: 8KB - Virtual size: 12KB

.idata Size: - Virtual size: 16KB

.rsrc Size: - Virtual size: 8KB

.text
Size: 512B - Virtual size: 16KB

.data
Size: 8KB - Virtual size: 12KB

.idata
Size: - Virtual size: 16KB

.rsrc
Size: - Virtual size: 8KB