4629d1c0f776cad7a6d24fbe5c20a83f_JaffaCakes118

General

Target

4629d1c0f776cad7a6d24fbe5c20a83f_JaffaCakes118
Size

169KB
MD5

4629d1c0f776cad7a6d24fbe5c20a83f
SHA1

ae34f5a3a8e8ccfd2f76af9c84437ce48e7dde86
SHA256

c76aabdeaa3c9c08176923925a269b0c843f688458786115e5cce74789ac7bf3
SHA512

2786fae47edd9b1ec16f4a5031b18ae6187fa7082e741e9473f5518e43344438d8b042ab1d03640ab7efc801ab94aff94448fa3b011dbc6d82bdc75106392b65
SSDEEP

3072:i5clOvyQEEh0eBv774IUxAFOn71u3RjSh+T6joksYHyGXxnDD:6VviaBvYrmGQRGh7joU7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4629d1c0f776cad7a6d24fbe5c20a83f_JaffaCakes118

Files

4629d1c0f776cad7a6d24fbe5c20a83f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

111ac61aca5d261b394164fd4b423c38

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateThread
ExitProcess
ExitThread
FileTimeToLocalFileTime
GetCommandLineA
GetCurrentProcessId
GetCurrentThreadId
GetEnvironmentVariableA
GetModuleHandleA
GetStartupInfoA
GetSystemTimeAsFileTime
GetTickCount
GetUserDefaultLCID
LoadLibraryA
LoadResource
MulDiv
QueryPerformanceCounter
ReadFile
SetLastError
SetUnhandledExceptionFilter
TlsAlloc
VirtualAlloc
VirtualFree
VirtualProtect

msvcrt

_getdcwd
_exit
_except_handler3
_adjust_fdiv
wcsncpy
strrchr
fwrite
free
swprintf
__wgetmainargs
_EH_prolog
_CxxThrowException
_itow

user32

SetWindowPlacement
ScreenToClient
PeekMessageA
LoadStringA
InvalidateRect
GetWindowTextA
EnableWindow
DialogBoxIndirectParamA
CreateWindowExA
CloseClipboard
CheckMenuRadioItem

comctl32

CreateStatusWindowA
CreateToolbarEx
DrawStatusTextA
InitCommonControls
CreatePropertySheetPageA

imm32

ImmGetCompositionWindow
ImmDisableIME
ImmDestroySoftKeyboard
ImmAssociateContext
ImmEnumInputContext
ImmGetContext
ImmSetCompositionWindow

gdi32

Escape
GetDIBColorTable
GetNearestColor
Rectangle
SetPaletteEntries
SetTextAlign
CreateHalftonePalette

Sections

.text
Size: 82KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 43KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

111ac61aca5d261b394164fd4b423c38

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

comctl32

imm32

gdi32

Sections

.text Size: 82KB - Virtual size: 84KB

.rdata Size: 43KB - Virtual size: 44KB

.data Size: 21KB - Virtual size: 24KB

.rsrc Size: 21KB - Virtual size: 24KB

.text
Size: 82KB - Virtual size: 84KB

.rdata
Size: 43KB - Virtual size: 44KB

.data
Size: 21KB - Virtual size: 24KB

.rsrc
Size: 21KB - Virtual size: 24KB