4a9c2bbcfc3116074a3d8c9d37242627_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

4a9c2bbcfc3116074a3d8c9d37242627_JaffaCakes118
Size

43KB
MD5

4a9c2bbcfc3116074a3d8c9d37242627
SHA1

7cad1a83347abbdd4fbc2ef5ec8c82b786138294
SHA256

c42ed80718a72635cc660551776b979be4cb913a14b75d367b9368848c24da02
SHA512

75fbdc4ae3cef9665735e87a03c19e75bb3f16980e75d75d39e5c6e24088abd4d12e46a027161d3a2df91c5970ab960f9056842081df0dcf2cd7eb29723fc02f
SSDEEP

768:TGF6C+YNJWFvtCM9sD27FBpvjgYVyKKf0qZJwwP3FNgb7Pb4IN:TGF6C+88FQM9sD2ZBpMia0aJD3FQ7z7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4a9c2bbcfc3116074a3d8c9d37242627_JaffaCakes118

Files

4a9c2bbcfc3116074a3d8c9d37242627_JaffaCakes118
.exe windows:4 windows x86 arch:x86

431b940d44a2f2ae94616e42a9df6d6d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetConsoleOutputCP
VirtualProtect
GetFullPathNameW
EnumCalendarInfoA
GetLastError
GetConsoleAliasExesA
GetVersionExA
GetStartupInfoW
GetHandleInformation
CreateNamedPipeW
GlobalFindAtomW
GetFileSizeEx
GetModuleFileNameW
CreateWaitableTimerW
SetConsoleIcon
CreateTimerQueueTimer

user32

BringWindowToTop
RemoveMenu
MsgWaitForMultipleObjects
GetKeyNameTextW
TileChildWindows
GetScrollPos
GetForegroundWindow
DlgDirSelectComboBoxExA
LoadImageA
GetMenuDefaultItem
CreateMenu
PostMessageA
SetInternalWindowPos
InsertMenuA
OpenInputDesktop
GetMessageA
IsCharUpperA
EnableScrollBar
UserClientDllInitialize
keybd_event
SetMenuDefaultItem
RegisterDeviceNotificationW
SendMessageTimeoutA
ChangeMenuA
GetWindowPlacement
OpenWindowStationA
GetSysColor
DrawFrame
LoadCursorA
EnumPropsW
SetDlgItemInt
DlgDirListComboBoxW
SendDlgItemMessageA
GetCursorPos
SetWindowTextA
SetFocus
PeekMessageA
DrawCaption
GetWindowLongA
UnregisterClassW
SetActiveWindow
SetTimer
SystemParametersInfoW

gdi32

GdiReleaseLocalDC
SetDIBits
SetPixel
GetEnhMetaFileA
ExcludeClipRect
GdiDeleteSpoolFileHandle
ResizePalette
CreateFontW
GdiSetBatchLimit
GdiAddGlsBounds

comdlg32

CommDlgExtendedError
ChooseColorA
FindTextW
ChooseFontA
ReplaceTextA
GetSaveFileNameW
Ssync_ANSI_UNICODE_Struct_For_WOW
PageSetupDlgA
GetFileTitleW
PrintDlgExW
PrintDlgA
dwLBSubclass
GetOpenFileNameW

psapi

GetMappedFileNameA
EnumDeviceDrivers
GetDeviceDriverBaseNameA
GetWsChanges
GetDeviceDriverFileNameA
InitializeProcessForWsWatch
GetMappedFileNameW
EmptyWorkingSet
GetModuleBaseNameW
GetProcessMemoryInfo
GetModuleInformation
GetDeviceDriverBaseNameW
GetModuleFileNameExW
GetModuleBaseNameA
EnumProcesses
GetDeviceDriverFileNameW

comctl32

InitCommonControlsEx
ImageList_GetImageRect
ImageList_LoadImageA
ImageList_SetDragCursorImage
FlatSB_SetScrollInfo
GetMUILanguage
ImageList_ReplaceIcon
CreateMappedBitmap
DrawStatusTextW
FlatSB_GetScrollInfo
ImageList_SetFlags
CreatePropertySheetPageA
DestroyPropertySheetPage
ImageList_Write
ImageList_GetImageCount
PropertySheetW
CreateStatusWindow
DrawStatusText
CreateStatusWindowW
ImageList_EndDrag
InitializeFlatSB
CreateToolbarEx
ImageList_BeginDrag
ImageList_DrawIndirect
ImageList_AddIcon
ImageList_GetDragImage

Sections

.text
Size: 4KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 33KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

431b940d44a2f2ae94616e42a9df6d6d

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

psapi

comctl32

Sections

.text Size: 4KB - Virtual size: 44KB

.data Size: 33KB - Virtual size: 36KB

.idata Size: 4KB - Virtual size: 8KB

.text
Size: 4KB - Virtual size: 44KB

.data
Size: 33KB - Virtual size: 36KB

.idata
Size: 4KB - Virtual size: 8KB