39b9ca5543689dee4e72c63b0096e3f9_JaffaCakes118

General

Target

39b9ca5543689dee4e72c63b0096e3f9_JaffaCakes118
Size

43KB
MD5

39b9ca5543689dee4e72c63b0096e3f9
SHA1

9a0f26712340ae498dbf7b12c2da617344cf0456
SHA256

0a3f207112ce95d57684c1af3b1af7660ffc0a90e4d6769651ff1b13e2b5752f
SHA512

3fedded04c950c38ef33c78947db0f5f3098893c9e525af5ddc06896ca58e310dced6fc355df006fd0e09578cbd628bf3a018ba1d9ea5400edda7843665c3b18
SSDEEP

768:Idy5Vz2JiNdEFLWnQpmAMKWmh8TZ2VCLuEpqfxE80L34zj+NzMCRl/pfP8W:LrqJllWntAMKWmiFHPWP+5NbRlB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
39b9ca5543689dee4e72c63b0096e3f9_JaffaCakes118

Files

39b9ca5543689dee4e72c63b0096e3f9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

feac0aa8181f4a49fd770eaa835a3751

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CreateRemoteThread
DeleteCriticalSection
DeleteFileA
ExitProcess
FileTimeToSystemTime
FindFirstFileW
FreeEnvironmentStringsW
GetCompressedFileSizeW
GetDateFormatA
GetDefaultCommConfigW
GetFileType
GetLongPathNameA
GetProcessTimes
GetTempFileNameA
GetUserDefaultLangID
IsBadCodePtr
IsBadHugeWritePtr
IsBadWritePtr
OpenWaitableTimerA
_hwrite
_lcreat
lstrcmpA
lstrcpynA

user32

ArrangeIconicWindows
CharNextExA
CharPrevW
CharToOemA
CharUpperA
CheckRadioButton
DdeAbandonTransaction
FreeDDElParam
GetActiveWindow
GetMessageExtraInfo
GetOpenClipboardWindow
GetProcessDefaultLayout
GetThreadDesktop
GetUserObjectInformationW
IsDialogMessage
MenuItemFromPoint
MonitorFromPoint
SetClassLongW
SetRectEmpty
SwapMouseButton
TranslateAccelerator
UpdateWindow
keybd_event

gdi32

AbortPath
AddFontResourceA
AnimatePalette
CloseFigure
CreateDCW
CreateEllipticRgn
CreatePalette
DeleteObject
EnumFontFamiliesExA
EqualRgn
GetCharWidth32W
GetClipBox
GetEnhMetaFileA
GetFontData
GetGlyphOutline
GetKerningPairsA
GetNearestPaletteIndex
GetRegionData
GetTextExtentPointA
PlayEnhMetaFileRecord
PlayMetaFileRecord
PolyBezier
PolyDraw
Rectangle
RestoreDC
ScaleWindowExtEx
SetWinMetaFileBits
SetWindowExtEx
TranslateCharsetInfo

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 42KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

feac0aa8181f4a49fd770eaa835a3751

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 4KB

.data Size: 42KB - Virtual size: 48KB

.text
Size: 512B - Virtual size: 4KB

.data
Size: 42KB - Virtual size: 48KB