61e8fe5e1770b3c7c22199358fded0d6_JaffaCakes118

General

Target

61e8fe5e1770b3c7c22199358fded0d6_JaffaCakes118
Size

228KB
MD5

61e8fe5e1770b3c7c22199358fded0d6
SHA1

d5ac97bb05c3b1a6a55ad1de37db0aa4549095c4
SHA256

0ba9169ca60db3f9ca22207854559c019d5b99436661a39dd109caeaf31b1be2
SHA512

4cc4cbc407e6561f18dcb69a62536757a6f46a964b23efdac45ea957ddc6c44c1415335d2044c54dd1410e6e1cacff6db66d9ed805a8b1a5b1731cbfb1dede3b
SSDEEP

6144:Tp/tlt3FmgWk/3CaX1spHTWBymuIzXj7V5:TpVb3FmgWKRX1OzWjHzfV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
61e8fe5e1770b3c7c22199358fded0d6_JaffaCakes118

Files

61e8fe5e1770b3c7c22199358fded0d6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8abceb8537d7ccdef560d5252d5fe86f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

CommConfigDialogW
DosDateTimeToFileTime
EndUpdateResourceW
EnumResourceLanguagesA
ExitProcess
FindResourceA
FlushInstructionCache
GetCurrentThread
GetModuleHandleA
GetModuleHandleW
Heap32ListFirst
Heap32Next
LoadLibraryExW
LockFileEx
QueryPerformanceCounter
SetCommBreak
SetCommTimeouts
SetConsoleCursorInfo
SetEvent
SetFilePointer
SetMailslotInfo
VerLanguageNameA
WriteConsoleInputW
lstrcpynW

user32

ActivateKeyboardLayout
AppendMenuW
CallMsgFilterW
ChildWindowFromPointEx
CreateIconFromResourceEx
CreateWindowExA
DdeFreeDataHandle
EnumChildWindows
EnumDisplayMonitors
FindWindowExA
GetCapture
GetGuiResources
GetKeyboardLayoutNameA
GetMessageW
GetNextDlgTabItem
GetWindowRgn
IMPQueryIMEW
MapVirtualKeyA
MapVirtualKeyExW
MessageBoxIndirectA
MonitorFromPoint
OpenDesktopA
PeekMessageW
ReplyMessage
SetCursorPos
SetScrollInfo
SwitchToThisWindow
TranslateAccelerator
TranslateAcceleratorW
VkKeyScanA

gdi32

AbortPath
DeleteEnhMetaFile
DeleteMetaFile
DeleteObject
DeviceCapabilitiesExW
EndDoc
EnumFontsW
ExtTextOutA
GdiPlayScript
GetBkColor
GetBoundsRect
GetCharWidthW
GetMetaFileA
GetMetaFileW
GetRgnBox
PlayMetaFileRecord
PolyDraw
SetDIBits
SetROP2
SetTextCharacterExtra
UpdateColors
gdiPlaySpoolStream

Sections

.text
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 225KB - Virtual size: 228KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 228KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8abceb8537d7ccdef560d5252d5fe86f

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 8KB

.data Size: 225KB - Virtual size: 228KB

.idata Size: - Virtual size: 8KB

.rsrc Size: 1024B - Virtual size: 228KB

.text
Size: 512B - Virtual size: 8KB

.data
Size: 225KB - Virtual size: 228KB

.idata
Size: - Virtual size: 8KB

.rsrc
Size: 1024B - Virtual size: 228KB