4bba49a98d358780501aeb609e5cabc2_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

4bba49a98d358780501aeb609e5cabc2_JaffaCakes118
Size

41KB
MD5

4bba49a98d358780501aeb609e5cabc2
SHA1

f2beca6d989cb229d6b59a1a5b5dcff41b10df88
SHA256

a9963c0cadbd69104d636125812b61ea80de02561b35ad38c80dd806f0bccfb4
SHA512

f5897c04207337dabbab714a720c2322e3b35e9073e39d20d58e2b8d7b17c94be6afb39ca6de0da0e24eb5b18887243ae39183cfa0cfb063e395ed41582c3153
SSDEEP

768:R2uXis+XYyM74o6LuEqnOqFwIahQpxujD5Z7SfNFH8tonW3VHyIipGSC:RTXitDo6LuEYwai5Mn8WAVoGJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4bba49a98d358780501aeb609e5cabc2_JaffaCakes118

Files

4bba49a98d358780501aeb609e5cabc2_JaffaCakes118
.exe windows:4 windows x86 arch:x86

dd89031c2ac70a8f7347141a56fc7f39

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
VirtualProtect
SetLastError
IsDBCSLeadByte
SetConsoleNlsMode
CreateDirectoryA
GetTempFileNameA
FreeConsole
GetConsoleKeyboardLayoutNameA
UnlockFileEx
CreateFileW
HeapUnlock
GetNumberOfConsoleMouseButtons
ReadConsoleA
OpenThread
SetConsoleDisplayMode
FatalAppExitA
HeapLock
EnumDateFormatsExA
Process32FirstW
WriteConsoleInputA
SetComputerNameExW
WriteProfileSectionA
SetTapeParameters
GetModuleHandleW
lstrcat
WriteConsoleOutputAttribute
EnumSystemLocalesW
GlobalUnWire
GetNumberOfConsoleInputEvents
WriteConsoleOutputCharacterA
EnumUILanguagesW
BuildCommDCBAndTimeoutsA
EnumResourceLanguagesA
OpenSemaphoreW
Module32NextW
OpenEventW
SearchPathW
GetVolumeNameForVolumeMountPointA
EnumSystemLocalesA

user32

SetCursor
EqualRect
SetScrollPos
DrawMenuBarTemp
FindWindowExW
UserHandleGrantAccess
DestroyCaret
ToAscii
ShowCaret
CascadeChildWindows
LoadAcceleratorsW
GetMenu
GetUpdateRect
CreateWindowStationA
LoadBitmapW
GetSystemMetrics
QuerySendMessage
SetForegroundWindow
LookupIconIdFromDirectoryEx
SoftModalMessageBox
WindowFromPoint

gdi32

EudcUnloadLinkW
CreateColorSpaceW
Ellipse
EngEraseSurface
GetClipBox
CreateHatchBrush
SetBoundsRect
FONTOBJ_pfdg
GetPixel
EngCreateSemaphore
GetTextFaceAliasW
GdiGetPageCount
GetCharABCWidthsA
GetOutlineTextMetricsW
CreateDIBPatternBrushPt
GdiQueryFonts
gdiPlaySpoolStream
GdiEntry6
GetDCBrushColor
DeleteMetaFile
SetAbortProc
GetGlyphIndicesW
GetEnhMetaFilePaletteEntries
GdiAddFontResourceW

comdlg32

ChooseColorW
PrintDlgExA
FindTextA
ChooseFontW
PageSetupDlgW
ReplaceTextW
PrintDlgW
GetSaveFileNameA
GetOpenFileNameA
WantArrows
GetFileTitleA

Sections

.text
Size: 4KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 33KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

dd89031c2ac70a8f7347141a56fc7f39

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

Sections

.text Size: 4KB - Virtual size: 44KB

.data Size: 33KB - Virtual size: 36KB

.idata Size: 3KB - Virtual size: 4KB

.text
Size: 4KB - Virtual size: 44KB

.data
Size: 33KB - Virtual size: 36KB

.idata
Size: 3KB - Virtual size: 4KB