4ceec67d9181d663d436a5f1a5d6f193_JaffaCakes118

General

Target

4ceec67d9181d663d436a5f1a5d6f193_JaffaCakes118
Size

276KB
MD5

4ceec67d9181d663d436a5f1a5d6f193
SHA1

ef0429ca149272cd95dd137b2464851ee8a465d7
SHA256

32bd6cfcac76fcb712a62a34931ce218b4400509e9f4d9e7268dc7400492ca78
SHA512

828a079be9b1e025d6574d64bea364a364cce3ce9413d17bb38dee4e5b921170b4e1a706de85b7b017bdb0737df6eba41d55c02f2f0b52ae4b1b0f8530731af9
SSDEEP

6144:l6+sA7aHVb4Z38ApkUYC2/6gMpp2UX9SysfOENL82VR:IVx2iAKUYC2UrSysGENB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4ceec67d9181d663d436a5f1a5d6f193_JaffaCakes118

Files

4ceec67d9181d663d436a5f1a5d6f193_JaffaCakes118
.dll windows:4 windows x86 arch:x86

eb834c44378463d665c3b1dafdee532a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

BeginUpdateResourceW
BuildCommDCBA
BuildCommDCBW
ClearCommBreak
CreateFileMappingA
CreateNamedPipeW
CreateTapePartition
DeleteFiber
ExitProcess
FoldStringW
GetCurrentThread
GetDefaultCommConfigW
GetProfileIntW
GetProfileStringA
GetStartupInfoA
GetTimeZoneInformation
GetVolumeInformationA
HeapDestroy
IsBadWritePtr
LocalLock
LocalReAlloc
OpenEventW
ScrollConsoleScreenBufferW
SetComputerNameA
SwitchToFiber

user32

ArrangeIconicWindows
CallNextHookEx
CharPrevExA
CharToOemBuffW
CopyIcon
CreateDialogIndirectParamW
GetActiveWindow
GetInternalWindowPos
GetKeyboardLayoutList
GetMenuStringW
GetWindow
GetWindowContextHelpId
GetWindowTextW
HideCaret
IsDialogMessage
OemToCharBuffA
OemToCharW
RegisterClassExA
RegisterTasklist
SetKeyboardState
SetMenuInfo
SetScrollInfo
SetWindowWord
SetWindowsHookW
UnpackDDElParam
UnregisterClassW

gdi32

CreateBrushIndirect
CreateColorSpaceW
CreateEnhMetaFileW
CreatePenIndirect
DPtoLP
DeviceCapabilitiesExW
EnableEUDC
EndPage
FrameRgn
GetCharABCWidthsA
GetCharacterPlacementA
GetDCOrgEx
GetDeviceCaps
GetMetaFileW
GetObjectA
GetPolyFillMode
PatBlt
Rectangle
SetBrushOrgEx
SetColorAdjustment
SetDIBColorTable
SetGraphicsMode
SetLayout
SetMetaRgn
SetPixelFormat
SetStretchBltMode
SetViewportOrgEx
SwapBuffers

Sections

.code
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 264KB - Virtual size: 280KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 232KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

eb834c44378463d665c3b1dafdee532a

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.code Size: 4KB - Virtual size: 4KB

.data Size: 264KB - Virtual size: 280KB

.rdata Size: 512B - Virtual size: 8KB

.rsrc Size: 4KB - Virtual size: 232KB

.code
Size: 4KB - Virtual size: 4KB

.data
Size: 264KB - Virtual size: 280KB

.rdata
Size: 512B - Virtual size: 8KB

.rsrc
Size: 4KB - Virtual size: 232KB