48737ed0665e19101580c4caef28ede4_JaffaCakes118

General

Target

48737ed0665e19101580c4caef28ede4_JaffaCakes118
Size

41KB
MD5

48737ed0665e19101580c4caef28ede4
SHA1

b5fa779c5d50e08ba4169204a732d20665c56f52
SHA256

582ca5088db747e2a94ffbe0eed38597b85275e58e118fdf7c0283e1dc294afa
SHA512

72868d262533c931a909879a745907c1d1af86b0f372b79663af4a498210ab7ca3ef3460d10293dc6cc45bf50df9f4c3ba3b29ff73959857eccd6c9c9a909dec
SSDEEP

768:9FhnCLqHcd7Y5EpgFP1sH3OCLg8F17Gbh71VFjZIDOgfcwjajwZNHTmc:3EdeEpE23OCLgg1atJXjZiOsVajk5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
48737ed0665e19101580c4caef28ede4_JaffaCakes118

Files

48737ed0665e19101580c4caef28ede4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f59bf5f21ac82a0e5fc3ea88c2cefe6f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CopyFileExW
CreateMailslotW
EnumResourceNamesA
ExitProcess
FileTimeToLocalFileTime
FindAtomA
FindNextFileA
GetProcessTimes
GetTempPathA
GetTimeZoneInformation
GlobalAddAtomW
GlobalUnWire
HeapCreate
InitializeCriticalSection
IsBadHugeWritePtr
TransactNamedPipe
VerLanguageNameA
WriteTapemark
_lread
lstrcatA
lstrlenW

user32

AppendMenuW
CopyImage
DdeCreateStringHandleA
DdeQueryStringA
FlashWindow
GetClassNameA
GetClipboardFormatNameW
GetOpenClipboardWindow
GetQueueStatus
GetUserObjectInformationW
IsDlgButtonChecked
IsIconic
LoadMenuA
LockWindowStation
MapWindowPoints
OffsetRect
PtInRect
ReplyMessage
ScrollDC
SetForegroundWindow
SetMenuItemInfoW
ShowCursor

gdi32

ColorMatchToTarget
CopyEnhMetaFileW
CopyMetaFileW
GdiSetBatchLimit
GetBkColor
GetCharacterPlacementW
GetClipBox
GetColorAdjustment
GetColorSpace
GetDIBits
GetFontLanguageInfo
GetGlyphOutlineA
GetRasterizerCaps
GetTextFaceA
PatBlt
PolylineTo
RectInRegion
RemoveFontResourceA
ResetDCW
SetDIBitsToDevice
SetViewportExtEx
SwapBuffers

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 39KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f59bf5f21ac82a0e5fc3ea88c2cefe6f

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 4KB

.data Size: 39KB - Virtual size: 56KB

.rdata Size: - Virtual size: 20KB

.rsrc Size: - Virtual size: 4KB

.text
Size: 512B - Virtual size: 4KB

.data
Size: 39KB - Virtual size: 56KB

.rdata
Size: - Virtual size: 20KB

.rsrc
Size: - Virtual size: 4KB