695bdaf7aaddfbb57f7629415287b1fa_JaffaCakes118

General

Target

695bdaf7aaddfbb57f7629415287b1fa_JaffaCakes118
Size

226KB
MD5

695bdaf7aaddfbb57f7629415287b1fa
SHA1

26200112dfdc1507f277015b69609864db8f3d8e
SHA256

9d3bd2799922fe096022da4638b2354057492deae310439d9a4827bfd047d32b
SHA512

36e286883fa8baee41e3a28fa70ae981f8d6ce2918150436995b3ebbdded62ff8f2a0dea319fdbc414b54acfe9b175bb5f84cc87c1ebb2d13e60d406ff36cf8f
SSDEEP

6144:evBy852zHPAXpUX/e+KNVXnlLRbKSIJXjShSCCVaKU/:mgvAXpU7KRYPJXjS0CCVS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
695bdaf7aaddfbb57f7629415287b1fa_JaffaCakes118

Files

695bdaf7aaddfbb57f7629415287b1fa_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ada522c62717c10037101217e841d171

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

BackupSeek
BeginUpdateResourceA
CloseHandle
CloseProfileUserMapping
CreateFileA
CreateTapePartition
EnterCriticalSection
ExitProcess
FlushViewOfFile
GetCPInfoExA
GetDiskFreeSpaceExA
GetLongPathNameA
GetNamedPipeInfo
GetPrivateProfileStructA
GetProcessWorkingSetSize
GetShortPathNameW
GetTapeStatus
GetVersion
GetVolumeInformationA
InterlockedCompareExchange
InterlockedExchangeAdd
QueryPerformanceCounter
ReadConsoleOutputCharacterW
RtlFillMemory
SetConsoleCursorInfo
SetConsoleScreenBufferSize
SetThreadLocale
WriteTapemark

user32

CallWindowProcA
ChangeClipboardChain
DdeAddData
DdeUnaccessData
DialogBoxIndirectParamA
DrawAnimatedRects
EmptyClipboard
EnumPropsA
ExcludeUpdateRgn
GetClipboardOwner
GetMenuStringW
GetMonitorInfoA
GetMonitorInfoW
GetWindowLongW
GetWindowWord
HiliteMenuItem
IMPGetIMEA
PtInRect
RegisterHotKey
SetDoubleClickTime
SetSysColors

gdi32

ColorMatchToTarget
CreateDIBSection
CreateEllipticRgn
EndDoc
EnumFontFamiliesW
EnumICMProfilesA
GdiFlush
GetDIBits
GetGlyphOutlineA
GetGraphicsMode
GetICMProfileW
LPtoDP
ModifyWorldTransform
OffsetClipRgn
PathToRegion
PlayMetaFileRecord
RectInRegion
RectVisible
SetBitmapBits
SetBitmapDimensionEx
SetRectRgn

Sections

.text
Size: 512B - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 223KB - Virtual size: 244KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 196KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ada522c62717c10037101217e841d171

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 12KB

.data Size: 223KB - Virtual size: 244KB

.rdata Size: - Virtual size: 12KB

.rsrc Size: 1024B - Virtual size: 196KB

.text
Size: 512B - Virtual size: 12KB

.data
Size: 223KB - Virtual size: 244KB

.rdata
Size: - Virtual size: 12KB

.rsrc
Size: 1024B - Virtual size: 196KB