4df78f786a885f75270114d36aec9571_JaffaCakes118

General

Target

4df78f786a885f75270114d36aec9571_JaffaCakes118
Size

109KB
MD5

4df78f786a885f75270114d36aec9571
SHA1

813c24d19577b327dc8dafe1dbc66f325612c898
SHA256

292245b1317af3bbc67b57105f10e8db72f296b51b5cd6096a887b8532251c9a
SHA512

51c7bca9bd37cf41161e81cfc75d95e98afc7a2b32821b164ef30fe33d16a3aa14133cc7e9a04d3d70c269ae719d88ff3e6bf07e2fb36a146eec74b0fbe5822a
SSDEEP

3072:FyOVzANA6icXDzJKea7rX3NSOSzITKx33H2:jktXDQ3NSOIITKxnH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4df78f786a885f75270114d36aec9571_JaffaCakes118

Files

4df78f786a885f75270114d36aec9571_JaffaCakes118
.exe windows:2 windows x86 arch:x86

060ff7e9bfb335df7536a049e9d79a8b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msjehook

RealDriveType
ImmLoadLayout
Options_RunDLL
GetFileNameFromBrowse
DllInstall
ILFree
SdbResolveDatabase
PifMgr_GetProperties
SdbGetDatabaseMatch
CtfImmSetAppCompatFlags
DAD_DragLeave
SdbGetNextChild
ILCreateFromPath
ImmLockImeDpi
ImmGetContext
ILGetSize
ImmDisableTextFrameService
ImmGetConversionStatus
CtfImmIsCiceroEnabled
ImmGetRegisterWordStyleA
ExtractIconResInfoA
ImmSetCandidateWindow
ImmCreateIMCC
DoEnvironmentSubstA
ImmSetCompositionStringA
ImmGetHotKey
ImmShowSoftKeyboard
ShimFlushCache
CtfAImmActivate
ImmGetImeMenuItemsA
ImmLockIMCC
ILCreateFromPathA
ImmGetOpenStatus

kernel32

CreateFileA
CreateFileMappingA
GetCurrentDirectoryA
InterlockedIncrement
RegisterWaitForSingleObjectEx
InitializeCriticalSection
ReadFile
HeapReAlloc
RtlFillMemory
UnmapViewOfFile
WaitForMultipleObjects
SetThreadPriorityBoost
GetSystemInfo
EnterCriticalSection
OpenThread
SwitchToThread
GetProcessHeaps
HeapFree
SetFilePointer
LocalReAlloc
MapViewOfFile
InterlockedDecrement
CreateIoCompletionPort
TryEnterCriticalSection
GetModuleHandleA
LeaveCriticalSection
GetThreadContext
VirtualQueryEx
GetThreadTimes
LocalAlloc
HeapAlloc
GetThreadPriority

Sections

.text
Size: 79KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 24KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

060ff7e9bfb335df7536a049e9d79a8b

Headers

DLL Characteristics

File Characteristics

Imports

msjehook

kernel32

Sections

.text Size: 79KB - Virtual size: 80KB

.rdata Size: 2KB - Virtual size: 4KB

.data Size: 24KB - Virtual size: 28KB

.rsrc Size: 3KB - Virtual size: 4KB

.text
Size: 79KB - Virtual size: 80KB

.rdata
Size: 2KB - Virtual size: 4KB

.data
Size: 24KB - Virtual size: 28KB

.rsrc
Size: 3KB - Virtual size: 4KB