60cb1fa8d2b4dc6310f277056b52eec0_JaffaCakes118

General

Target

60cb1fa8d2b4dc6310f277056b52eec0_JaffaCakes118
Size

97KB
MD5

60cb1fa8d2b4dc6310f277056b52eec0
SHA1

559ade42e64a1684e1039df164451dee08ba54f0
SHA256

7986b484618d655da6ef705a747c2995c116ebee22aae219aeb7dd5090e706f3
SHA512

1ffec6328485f0e61b7f6bcd899e7f4d23349bd020627ed129be58f2f807f19af64a8e548a40c751bee6f966d963450d593af60df13390039e839b10890c9467
SSDEEP

1536:aNrzRe10ySzwNrYCC/RDz0rewFZ+XshAqCodgMv7kObjOTjFii0//:aNr1eG4rYVJDzjwFZEs2g9v7kObB/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
60cb1fa8d2b4dc6310f277056b52eec0_JaffaCakes118

Files

60cb1fa8d2b4dc6310f277056b52eec0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

39d6a8189df01e463f34cc9e4becd3f3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Beep
CancelDeviceWakeupRequest
CreateDirectoryExA
CreateNamedPipeA
EnumCalendarInfoW
EnumDateFormatsA
EnumTimeFormatsA
ExitProcess
FindFirstChangeNotificationA
FindNextFileA
GetAtomNameW
GetCommModemStatus
GetCommState
GetHandleContext
GetNamedPipeHandleStateA
GetStartupInfoW
GetStringTypeW
GetVersion
OpenFileMappingA
PeekConsoleInputA
PulseEvent
RtlMoveMemory
SetConsoleTitleA
SetFileAttributesW
SetupComm
VirtualProtect
VirtualProtectEx
_hwrite

advapi32

AddAccessDeniedAce
AddAuditAccessAce
BuildTrusteeWithSidA
BuildTrusteeWithSidW
ChangeServiceConfigW
CryptDestroyKey
CryptHashData
CryptReleaseContext
CryptSetKeyParam
CryptSetProviderA
DeleteAce
GetAccessPermissionsForObjectW
GetServiceKeyNameA
InitializeSecurityDescriptor
ObjectCloseAuditAlarmA
PrivilegedServiceAuditAlarmW
QueryServiceConfigA
RegDeleteKeyA
RegEnumKeyA
RegQueryInfoKeyA
RegReplaceKeyA
RegSetValueA
StartServiceA

gdi32

AbortDoc
AddFontResourceA
AngleArc
AnimatePalette
CancelDC
CreateICW
EnumFontFamiliesExA
Escape
FillPath
GdiGetBatchLimit
GdiPlayDCScript
GetBitmapBits
GetGraphicsMode
GetMetaFileA
GetObjectType
GetRandomRgn
GetTextCharacterExtra
IntersectClipRect
InvertRgn
PathToRegion
PlayMetaFile
Polygon
PolylineTo
ScaleViewportExtEx
SetDeviceGammaRamp
SetGraphicsMode
SetTextJustification
SetWindowExtEx
StartPage

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 91KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

39d6a8189df01e463f34cc9e4becd3f3

Headers

File Characteristics

Imports

kernel32

advapi32

gdi32

Sections

.text Size: 512B - Virtual size: 4KB

.data Size: 91KB - Virtual size: 108KB

.idata Size: - Virtual size: 12KB

.rsrc Size: 4KB - Virtual size: 16KB

.text
Size: 512B - Virtual size: 4KB

.data
Size: 91KB - Virtual size: 108KB

.idata
Size: - Virtual size: 12KB

.rsrc
Size: 4KB - Virtual size: 16KB