40568aa369e482c0ac6c38ac835a20b2_JaffaCakes118

General

Target

40568aa369e482c0ac6c38ac835a20b2_JaffaCakes118
Size

10KB
MD5

40568aa369e482c0ac6c38ac835a20b2
SHA1

9406dea3a26b0993fc9e164453baf8319a58f01d
SHA256

a8ebc06192cf7058142d11288475cfd7d8ea33e1a05e881945dccc8b3c621cc9
SHA512

4734e237002121c9dac95102222b7bf44420b1f4dc041d4b1da3af7248bc3ec93541612252f7af04c4c7a5a3dec9f0f356ae82e4b520af310ea3f52aa00b7a7a
SSDEEP

192:F0fhfpoy+i0hy2bhV8fXWRTUsA7yhtsibJvy9hbjfW0hBeFje5T2K:F0ZYjNV8uUsA7kLblQdhsFj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
40568aa369e482c0ac6c38ac835a20b2_JaffaCakes118

Files

40568aa369e482c0ac6c38ac835a20b2_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9c10012cb7b5dd36a675aec03d308213

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BackupSeek
BuildCommDCBW
CloseHandle
CreateFileMappingA
CreateThread
DosDateTimeToFileTime
ExitProcess
GenerateConsoleCtrlEvent
GetCPInfoExW
GetCommTimeouts
GetDateFormatW
GetLogicalDriveStringsW
GetNamedPipeHandleStateW
GetProcessTimes
MoveFileExA
SearchPathW
SetConsoleOutputCP
SetFileApisToANSI
UpdateResourceW
WaitForDebugEvent
WaitNamedPipeW
WideCharToMultiByte
WriteConsoleA
_lclose
_lwrite
lstrcatW
lstrcmpW

user32

CallMsgFilter
CallMsgFilterA
CascadeWindows
ChangeMenuW
CountClipboardFormats
CreateDesktopA
CreateMenu
CreateWindowStationW
EnableScrollBar
GetKeyboardState
GetTopWindow
GetUpdateRect
IsCharLowerA
LoadMenuIndirectA
MapVirtualKeyA
MapVirtualKeyExA
OemToCharBuffA
RealGetWindowClass
RemovePropW
SendIMEMessageExA
SetScrollInfo
SetSysColorsTemp
TranslateAcceleratorA
TranslateMessage
UpdateWindow
ValidateRgn

gdi32

ColorCorrectPalette
CombineRgn
CreateColorSpaceW
CreateCompatibleDC
CreateFontW
Ellipse
EnumFontFamiliesExA
EnumFontFamiliesExW
EnumMetaFile
FillPath
GdiSetBatchLimit
GetClipRgn
GetDeviceCaps
GetEnhMetaFileA
GetKerningPairsA
GetLayout
GetObjectType
GetStretchBltMode
GetTextExtentPoint32W
GetWindowOrgEx
ModifyWorldTransform
ScaleViewportExtEx
SetDeviceGammaRamp
SetPolyFillMode
SetRectRgn
SetStretchBltMode
SetTextCharacterExtra

Sections

.text
Size: 512B - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xdata
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 5.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9c10012cb7b5dd36a675aec03d308213

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 20KB

.data Size: 8KB - Virtual size: 20KB

.xdata Size: - Virtual size: 12KB

.rsrc Size: - Virtual size: 5.0MB

.text
Size: 512B - Virtual size: 20KB

.data
Size: 8KB - Virtual size: 20KB

.xdata
Size: - Virtual size: 12KB

.rsrc
Size: - Virtual size: 5.0MB