4d2c6d5049c00f29880d333308617eab_JaffaCakes118

General

Target

4d2c6d5049c00f29880d333308617eab_JaffaCakes118
Size

10KB
MD5

4d2c6d5049c00f29880d333308617eab
SHA1

546e14616a97ea4460f89a8c5f35564afaa79d03
SHA256

91f5a491a8525cb7741ef56c961a7121750120932f6c82d179edd0aeac4531d3
SHA512

13087e02a75f012e81cdc90b12e0a1053dc42f7e01296ecfd9ddc427a0209979c4665b1e5ca29196681eb65785d317a2c674ac6dd639fc15ef2a98f130c89031
SSDEEP

192:AXPD9yg1z5gXWEDnWIwsr0XnjUSktYCzSsj3XBwRZiaPanM3dwM3iaVy:8PD91tEDWXnYda0Sq3XBwbD2M393i9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4d2c6d5049c00f29880d333308617eab_JaffaCakes118

Files

4d2c6d5049c00f29880d333308617eab_JaffaCakes118
.exe windows:4 windows x86 arch:x86

29e048b5432dc8e5abe02f34d1c651b8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BuildCommDCBAndTimeoutsA
BuildCommDCBW
CommConfigDialogA
CopyFileExA
EndUpdateResourceW
EnumResourceTypesW
ExitProcess
FindResourceExA
GetCommState
GetConsoleTitleW
GetPriorityClass
GetPrivateProfileSectionNamesA
GetWriteWatch
GlobalFindAtomA
HeapDestroy
HeapUnlock
IsValidLocale
LCMapStringA
LCMapStringW
OpenEventW
OpenFile
OpenFileMappingA
ReadConsoleA
ReadProcessMemory
SetCurrentDirectoryW
SetFileAttributesW
WaitCommEvent

advapi32

BuildExplicitAccessWithNameA
BuildTrusteeWithSidA
BuildTrusteeWithSidW
CancelOverlappedAccess
CloseEventLog
ConvertSecurityDescriptorToAccessNamedA
CryptCreateHash
CryptGetKeyParam
EnumServicesStatusW
EqualSid
GetAclInformation
GetFileSecurityA
GetKernelObjectSecurity
GetMultipleTrusteeOperationW
GetOldestEventLogRecord
GetSecurityDescriptorDacl
LookupAccountNameW
LookupPrivilegeValueW
OpenBackupEventLogW
OpenSCManagerW
RegDeleteValueA
RegOpenKeyExW
RegSetValueA
RegisterServiceCtrlHandlerA
SetFileSecurityW
SetNamedSecurityInfoW
SetPrivateObjectSecurity
SetServiceBits
SetServiceObjectSecurity

user32

CharPrevExA
CharToOemA
CharToOemBuffA
CreateDialogIndirectParamW
DdeQueryNextServer
DrawStateA
DrawTextExA
EndPaint
EnumClipboardFormats
GetClipboardOwner
GetKeyboardLayoutList
GetSysColor
InsertMenuItemW
IsZoomed
MapVirtualKeyExW
NotifyWinEvent
SetCaretPos
SetMenuInfo
SetWindowsHookExW
ShowOwnedPopups
UnregisterClassA
ValidateRect
WaitMessage

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

29e048b5432dc8e5abe02f34d1c651b8

Headers

File Characteristics

Imports

kernel32

advapi32

user32

Sections

.text Size: 512B - Virtual size: 4KB

.data Size: 9KB - Virtual size: 28KB

.idata Size: - Virtual size: 8KB

.rsrc Size: - Virtual size: 4KB

.text
Size: 512B - Virtual size: 4KB

.data
Size: 9KB - Virtual size: 28KB

.idata
Size: - Virtual size: 8KB

.rsrc
Size: - Virtual size: 4KB