3a94b4b8c94601e317161104398680a4_JaffaCakes118

General

Target

3a94b4b8c94601e317161104398680a4_JaffaCakes118
Size

42KB
MD5

3a94b4b8c94601e317161104398680a4
SHA1

65630c47b78eef5c2f2bc1e4b85f71ef546fbbd6
SHA256

5bfab46bae2b84faf43baf42f67907db79884e27e7ba016cb184747265edf812
SHA512

e3c38d38c610a9a4bdbb15758ab7d84a4a93118f352ced0b9deeda632566507f326149c8b789837c941bafe1374d0596ce8414f6ff7310217e83aa7a0357b77f
SSDEEP

768:CWh5SZuq/K3Ej6Hj2hMoDeSWVpCPDDV7GJy0PTQYOf581KTFzh3e:9hOuqSBS1eSWVpCPDAyCcY+2KJlO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3a94b4b8c94601e317161104398680a4_JaffaCakes118

Files

3a94b4b8c94601e317161104398680a4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ae4d390bc42a61f2a7902a83b591df12

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CopyFileA
CopyFileW
CreateDirectoryW
CreateSemaphoreA
EnumDateFormatsW
EnumResourceTypesA
ExitProcess
GetEnvironmentStringsA
GetPrivateProfileIntA
GetPrivateProfileSectionA
GetProcessHeap
GetThreadContext
InterlockedCompareExchange
MoveFileExA
QueryPerformanceCounter
RemoveDirectoryA
SetErrorMode
SetEvent
SetTapeParameters
TransactNamedPipe
WritePrivateProfileStringA
_hwrite

user32

AttachThreadInput
CallMsgFilter
CreateAcceleratorTableA
DdeImpersonateClient
EnumDesktopsA
GetClassInfoA
GetClassNameW
GetIconInfo
GetInternalWindowPos
GetMenuItemCount
GetTopWindow
IMPGetIMEW
IntersectRect
MapVirtualKeyExW
ModifyMenuW
MonitorFromRect
RealGetWindowClass
SendMessageA
SetDlgItemTextA
SetSysColors
SetWindowRgn
SwitchToThisWindow
TranslateMessage
UnhookWindowsHookEx
WaitForInputIdle

gdi32

AbortPath
ColorCorrectPalette
ColorMatchToTarget
CopyEnhMetaFileW
CreateColorSpaceW
CreateMetaFileA
CreatePen
DeleteEnhMetaFile
DeleteObject
EnumFontFamiliesA
EnumFontFamiliesExA
EqualRgn
GdiPlayDCScript
GdiPlayScript
GdiSetBatchLimit
GetCharWidthFloatW
GetCurrentObject
GetMetaFileA
GetPolyFillMode
GetTextFaceA
LineDDA
MaskBlt
MoveToEx
Pie
PlayMetaFile
ScaleViewportExtEx
SetBkMode
SetFontEnumeration
SetMapperFlags
SetWinMetaFileBits

Sections

.text
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 41KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xdata
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ae4d390bc42a61f2a7902a83b591df12

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 8KB

.data Size: 41KB - Virtual size: 56KB

.xdata Size: - Virtual size: 12KB

.rsrc Size: - Virtual size: 8KB

.text
Size: 512B - Virtual size: 8KB

.data
Size: 41KB - Virtual size: 56KB

.xdata
Size: - Virtual size: 12KB

.rsrc
Size: - Virtual size: 8KB