3b68c41875c9f8baa61dd67931ee2374_JaffaCakes118

General

Target

3b68c41875c9f8baa61dd67931ee2374_JaffaCakes118
Size

41KB
MD5

3b68c41875c9f8baa61dd67931ee2374
SHA1

95159b6ff0f4cb6a6b2e6e2263bc6aad89c1c7bf
SHA256

bd6235a8f0563f5658711a89a53aa97cab14c59ceccc7aa88c6ae780e166a387
SHA512

d62bef2c4336b01608f7bd61457805f3c0b2ddcb3a1c652da88d7da2cf620dff80ef1aebc4507b590fc74583a910ffd74924e4670642e69dfaa5f2261ed17d37
SSDEEP

768:BkFJKt+G8GasmMPa3WmVWFg0rRib2cXf8xPw1484nZ:GKt+lGasnFmyiakf/1F4Z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3b68c41875c9f8baa61dd67931ee2374_JaffaCakes118

Files

3b68c41875c9f8baa61dd67931ee2374_JaffaCakes118
.exe windows:4 windows x86 arch:x86

21a149b7b13ff43e5b1447d6e6df3173

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

AddAtomA
CompareStringA
DefineDosDeviceA
EnumSystemLocalesW
ExitProcess
GetCurrentDirectoryA
GetDiskFreeSpaceW
GetNamedPipeHandleStateW
GetPrivateProfileSectionA
GlobalDeleteAtom
GlobalFix
InitializeCriticalSectionAndSpinCount
InterlockedCompareExchange
InterlockedDecrement
OpenMutexA
QueryPerformanceCounter
QueueUserAPC
ReadConsoleOutputAttribute
RequestWakeupLatency
SetCurrentDirectoryW
SetEnvironmentVariableA
SetFileApisToANSI
SetupComm
lstrlen

user32

ActivateKeyboardLayout
ChangeDisplaySettingsW
ChangeMenuW
CharUpperBuffA
CharUpperW
CheckDlgButton
CreatePopupMenu
DdeCreateDataHandle
DdeFreeStringHandle
DdeImpersonateClient
DialogBoxParamA
EnumDesktopsA
GetLastActivePopup
GetWindowContextHelpId
GetWindowRgn
IsCharAlphaW
OffsetRect
RealGetWindowClass
ReleaseCapture
SetClipboardViewer
SetWindowWord
TabbedTextOutA
VkKeyScanA
WinHelpA

gdi32

CombineTransform
DeleteDC
DeleteEnhMetaFile
DeleteMetaFile
EnableEUDC
ExcludeClipRect
ExtFloodFill
FrameRgn
GdiPlayDCScript
GetCharABCWidthsA
GetCharWidthA
GetCurrentObject
GetMapMode
GetPaletteEntries
GetTextExtentPoint32A
GetTextMetricsW
PatBlt
PolyBezierTo
PolyPolygon
PtInRegion
RectVisible
RemoveFontResourceW
SelectClipRgn

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

21a149b7b13ff43e5b1447d6e6df3173

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 4KB

.data Size: 40KB - Virtual size: 56KB

.text
Size: 512B - Virtual size: 4KB

.data
Size: 40KB - Virtual size: 56KB