7629da7ca8213e28e679f7f70c319a3e_JaffaCakes118

General

Target

7629da7ca8213e28e679f7f70c319a3e_JaffaCakes118
Size

1.6MB
MD5

7629da7ca8213e28e679f7f70c319a3e
SHA1

c94aac79d2e770f1bfd39b523dfc6702667b92a0
SHA256

18279d22029d8d5e1fc9090cc94998ed6b28bf62511b947fccc5be763f48abab
SHA512

2cb0a4cb9ef855097bb34858944f5159f4a1959011d2c5980c29f06ae94dccda6c205d2db84b67b2ee4907fd9e7244aeecab3d6165149e31a217af59b9cd9983
SSDEEP

49152:oRnVORCmrw4yan9NvDYg0dC4KNS0fieHmFcp4g6:aVOTEPa9NvEg+0NjfxVH6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7629da7ca8213e28e679f7f70c319a3e_JaffaCakes118

Files

7629da7ca8213e28e679f7f70c319a3e_JaffaCakes118
.exe windows:5 windows x86 arch:x86

e93b2e7ccb160ed555c56ac31b4451d0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntdll

RtlUnicodeStringToAnsiString
RtlFreeAnsiString
RtlInitUnicodeString

user32

GetTitleBarInfo
IsMenu
EnableWindow
ReleaseDC
InsertMenuItemW
LoadImageA
ToUnicodeEx
SetWindowPos
SetFocus
GetDC
FindWindowW
GetWindowLongA
MapVirtualKeyA

gdi32

PatBlt
SetPixel
GetTextCharsetInfo
IntersectClipRect
SetRectRgn
ResizePalette
CreatePatternBrush
WidenPath

kernel32

SetNamedPipeHandleState
GlobalCompact
CancelWaitableTimer
MoveFileA
GetVersionExW
HeapReAlloc
LoadLibraryW
VirtualQueryEx
GetModuleHandleW
SetPriorityClass
GetCPInfo
GetCurrentDirectoryA

Exports

Exports

?_CreateCompatibleDC@@YG_KPAHKK@Z

Sections

.text
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.xdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.init1
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.init0
Size: 1.6MB - Virtual size: 8.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e93b2e7ccb160ed555c56ac31b4451d0

Headers

File Characteristics

Imports

ntdll

user32

gdi32

kernel32

Exports

Exports

Sections

.text Size: 19KB - Virtual size: 19KB

.xdata Size: 1KB - Virtual size: 1KB

.data Size: 5KB - Virtual size: 5KB

.init1 Size: 6KB - Virtual size: 5KB

.init0 Size: 1.6MB - Virtual size: 8.9MB

.rsrc Size: 13KB - Virtual size: 12KB

.reloc Size: 4KB - Virtual size: 4KB

.text
Size: 19KB - Virtual size: 19KB

.xdata
Size: 1KB - Virtual size: 1KB

.data
Size: 5KB - Virtual size: 5KB

.init1
Size: 6KB - Virtual size: 5KB

.init0
Size: 1.6MB - Virtual size: 8.9MB

.rsrc
Size: 13KB - Virtual size: 12KB

.reloc
Size: 4KB - Virtual size: 4KB