717d98c0c68029229f9f8a5c30876ab5_JaffaCakes118

General

Target

717d98c0c68029229f9f8a5c30876ab5_JaffaCakes118
Size

173KB
MD5

717d98c0c68029229f9f8a5c30876ab5
SHA1

99c1b16c726123d1908321f114b5a43f15f4346f
SHA256

ff4f1e73cb577518399c640f74ce7cacf357703d83dab6cca7f511ae57a58f9a
SHA512

56845b3f1559bb4e2ba5b738fff45f7cb9f2c6f289b05ac84427036daabf9493a516b97eca9c786def2f9e803038cc25b1db26e52995806c2a366f11858a57df
SSDEEP

3072:zgQkdNjYiObZbzCh5blPOlAOAcSNNZK5wb2tFXDblS5DT+XzVxTZ3Yi:r2NjvElz610ATcSNsb8T+XzbZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
717d98c0c68029229f9f8a5c30876ab5_JaffaCakes118

Files

717d98c0c68029229f9f8a5c30876ab5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8a714bb1ae8db6bf9ed7ec400a8ec393

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

CallNamedPipeW
PeekConsoleInputW
GetLastError
EnumLanguageGroupLocalesW
SetThreadIdealProcessor
SetConsoleMode
GetConsoleAliasExesLengthA
VirtualProtect
GetCommMask
_hwrite
CompareFileTime
MapUserPhysicalPages
CreateMailslotW
Beep
TerminateProcess
ExpandEnvironmentStringsW
GetSystemWindowsDirectoryA
GetLargestConsoleWindowSize
SetConsoleInputExeNameW

user32

RealGetWindowClassW
ScrollWindowEx
SendMessageTimeoutA
DestroyCaret
GetClipboardSequenceNumber
SetCursor
SetMenu
GetTitleBarInfo
CreateWindowStationW
GetMenuCheckMarkDimensions
UserClientDllInitialize
LockWorkStation
GetAppCompatFlags
SendMessageA
OffsetRect
RegisterHotKey
GetMonitorInfoA
EmptyClipboard
EnableMenuItem
GetWindowPlacement
DrawCaptionTempW
ChangeDisplaySettingsExA
DdeClientTransaction
ShowWindowAsync
CharPrevExA
AppendMenuA
SetScrollRange
SetPropA
SetDebugErrorLevel

gdi32

GetEnhMetaFileHeader
BRUSHOBJ_hGetColorTransform
GdiAddGlsRecord
PaintRgn
StretchDIBits
CreateBitmap
GetMiterLimit
PtVisible
OffsetClipRgn
EngMarkBandingSurface
BRUSHOBJ_ulGetBrushColor

comdlg32

ChooseFontW
dwOKSubclass
PrintDlgW
LoadAlterBitmap
ReplaceTextW
FindTextA
ChooseColorW
GetSaveFileNameA

Sections

.text
Size: 4KB - Virtual size: 192KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 165KB - Virtual size: 168KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8a714bb1ae8db6bf9ed7ec400a8ec393

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

Sections

.text Size: 4KB - Virtual size: 192KB

.data Size: 165KB - Virtual size: 168KB

.idata Size: 2KB - Virtual size: 4KB

.text
Size: 4KB - Virtual size: 192KB

.data
Size: 165KB - Virtual size: 168KB

.idata
Size: 2KB - Virtual size: 4KB