4a1f7efa026b97ba0acffd90b56b9ec0_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

4a1f7efa026b97ba0acffd90b56b9ec0_JaffaCakes118
Size

92KB
MD5

4a1f7efa026b97ba0acffd90b56b9ec0
SHA1

6353449242464235f67f04f46cfba36239377f0b
SHA256

66a312b25f165391f8f96180ad3cfe069d7a50ea3936dedfe551a853f027d774
SHA512

b3cce3c2d5be42f537b6e55a7586dbe519f2e8c1c3459b3ce4cb0edfc78960295b37b39a05de4d252723b127e938aee5e05f5620d28e10237def5a8925987870
SSDEEP

1536:m7Psj9E4f3Bkl3A/yRM2K60re23LsLOAv/sDkx+kJ5VBogjZEuMldcxjl6DDi:o69dZkl3+yR3Ar4OAv/g6d57ogjZENWB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4a1f7efa026b97ba0acffd90b56b9ec0_JaffaCakes118

Files

4a1f7efa026b97ba0acffd90b56b9ec0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2ef58602abfc93a99624f6bf201a251e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetTickCount
SetTimerQueueTimer
GetCommModemStatus
EnumResourceTypesA
Process32NextW
DisableThreadLibraryCalls
lstrcpyn
GetProcessHeap
CreateMutexA
OpenProcess
FindNextChangeNotification
GetCompressedFileSizeA
EnumResourceLanguagesA
lstrcmpi
SetTapeParameters
FindFirstChangeNotificationW
GetProcessVersion
FindResourceW
FindFirstVolumeMountPointA
ExpungeConsoleCommandHistoryW
VirtualProtect
GetEnvironmentStrings
HeapSummary
UnregisterWaitEx
WinExec
GlobalUnfix
GlobalFindAtomW
GetLastError
lstrlenA
RtlMoveMemory
ResetEvent

user32

GetClassLongW
keybd_event
EnumDesktopWindows
CallWindowProcA
MessageBoxExA
WaitMessage
PrivateExtractIconExW
DestroyIcon
IsZoomed
PostThreadMessageA
GetMouseMovePointsEx
ToAsciiEx
CreateIconFromResource
UpdateLayeredWindow
DdeDisconnect
EndMenu
GetMenuStringA
GetSysColorBrush
DestroyMenu
ModifyMenuW
PrivateExtractIconsA
UnionRect

gdi32

StartDocA
GetLayout
SetMetaFileBitsEx
EngTransparentBlt
SetPixelV
SetSystemPaletteUse
MoveToEx
SetGraphicsMode
GetDeviceGammaRamp
GetEnhMetaFileDescriptionA
RemoveFontResourceTracking
SetAbortProc
ExtSelectClipRgn
EngLoadModule
PolyTextOutW
GdiIsPlayMetafileDC
GetPixel
GdiReleaseDC
GdiSetAttrs
CreateColorSpaceW
GdiConvertBitmap
EngMultiByteToUnicodeN
SetBoundsRect
ExtCreateRegion
XFORMOBJ_bApplyXform
SetColorSpace
AddFontMemResourceEx
GetCharWidthW

comdlg32

dwOKSubclass
PageSetupDlgW
ChooseFontW
GetFileTitleA
ChooseColorW
PrintDlgA
PageSetupDlgA
CommDlgExtendedError
GetSaveFileNameW
ChooseColorA
PrintDlgExA
dwLBSubclass
GetOpenFileNameA
ChooseFontA
GetFileTitleW
FindTextW
GetOpenFileNameW

Sections

.text
Size: 4KB - Virtual size: 176KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

2ef58602abfc93a99624f6bf201a251e

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

Sections

.text Size: 4KB - Virtual size: 176KB

.data Size: 84KB - Virtual size: 84KB

.idata Size: 3KB - Virtual size: 4KB

.text
Size: 4KB - Virtual size: 176KB

.data
Size: 84KB - Virtual size: 84KB

.idata
Size: 3KB - Virtual size: 4KB