6452dd4127ac693ebd3053a6d6c50a2e_JaffaCakes118

General

Target

6452dd4127ac693ebd3053a6d6c50a2e_JaffaCakes118
Size

57KB
MD5

6452dd4127ac693ebd3053a6d6c50a2e
SHA1

a25322efd3475e49829201e5c045e694486d5cff
SHA256

057590836c0f5a4851d8a058513d9a7fdbee120254a1f06eabeeb129c4200214
SHA512

5213b44fcc8f5c4df778f5406d758aa1a47f15c57eafc59d26a7fba5cf898db4dfe78d0772a25f714f5e679f9a716faa25c4bb71f4b210bc77b3c8ef336b98f8
SSDEEP

1536:8/d+52+diuuIYgk8LvTjdvrH1dlzVz3A+JagGUy/vSnziqP:I+52mONgHdvrHXT3Y5UyYuqP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6452dd4127ac693ebd3053a6d6c50a2e_JaffaCakes118

Files

6452dd4127ac693ebd3053a6d6c50a2e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

74a8e15173ed8bb4c9edf9e0a3fba783

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BackupWrite
CallNamedPipeW
CancelWaitableTimer
CopyFileExA
CreateIoCompletionPort
DeviceIoControl
ExitProcess
FindFirstFileW
FindNextChangeNotification
FreeConsole
GetCommandLineW
GetLongPathNameW
GetMailslotInfo
GetShortPathNameW
GlobalAddAtomA
LoadLibraryA
OpenWaitableTimerW
QueryDosDeviceW
ReadConsoleOutputA
SetConsoleCtrlHandler
SetMessageWaitingIndicator
SetTapePosition
SetThreadContext
SetWaitableTimer
Thread32Next
WriteConsoleOutputCharacterW
lstrcmpiW

user32

ArrangeIconicWindows
BroadcastSystemMessageW
CallMsgFilterW
CreateWindowExA
DdeEnableCallback
DefDlgProcA
DestroyWindow
DispatchMessageA
DlgDirSelectComboBoxExW
FindWindowExW
GetAltTabInfo
GetCaretPos
GetLastActivePopup
GetMenuItemID
GetMessageTime
GetScrollPos
GetUserObjectInformationW
LoadCursorA
LookupIconIdFromDirectoryEx
MessageBoxExA
MsgWaitForMultipleObjects
OemKeyScan
RealGetWindowClass
SetWindowPos
ToUnicode
TrackPopupMenuEx
TranslateMDISysAccel

gdi32

CreateDIBSection
CreateScalableFontResourceA
DeleteColorSpace
EnumObjects
ExtCreatePen
FrameRgn
GdiComment
GetEnhMetaFileBits
GetEnhMetaFilePaletteEntries
GetGlyphOutline
GetGlyphOutlineA
GetKerningPairs
GetLogColorSpaceA
GetObjectW
GetStockObject
InvertRgn
OffsetClipRgn
PolyTextOutW
SelectClipRgn
SetAbortProc
SetPixel
SetRectRgn
SetWindowExtEx
UpdateICMRegKeyA

Sections

.text
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

74a8e15173ed8bb4c9edf9e0a3fba783

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 8KB

.data Size: 8KB - Virtual size: 24KB

.rdata Size: - Virtual size: 16KB

.rsrc Size: 1024B - Virtual size: 12KB

.text
Size: 512B - Virtual size: 8KB

.data
Size: 8KB - Virtual size: 24KB

.rdata
Size: - Virtual size: 16KB

.rsrc
Size: 1024B - Virtual size: 12KB