752dad94c65d2af128b07d0a4e4099d5_JaffaCakes118

General

Target

752dad94c65d2af128b07d0a4e4099d5_JaffaCakes118
Size

43KB
MD5

752dad94c65d2af128b07d0a4e4099d5
SHA1

333be2ec5efb6dc7cd4db57735a94803ae335ebc
SHA256

863248618b60859bd63a69ee2c215a2a242c3416efceecaed34c08ddfbde083d
SHA512

ea94350237f594f3e44faaf87b82c49b277e0d19b69fe61cbb3be59f8117bfa776e69a3dbc8d92ff469f5f4453c80025b122ccbf50fbdb6ce67544db3b171bf7
SSDEEP

768:tyYPLtIgw8RlM1keamdryc8QUbpaexxBFgNwbcPw7Sw1rzW08wGQEyM:t/ztDxCTdryEUbTdqocPwvPVUy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
752dad94c65d2af128b07d0a4e4099d5_JaffaCakes118

Files

752dad94c65d2af128b07d0a4e4099d5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

51ea5d475bf4f97236a98418f7c92b27

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CallNamedPipeA
CopyFileExW
CreateRemoteThread
DeleteAtom
EnumDateFormatsExA
ExitProcess
FileTimeToLocalFileTime
GetConsoleMode
GetEnvironmentStrings
GetLogicalDriveStringsA
GetPriorityClass
GetPrivateProfileSectionA
GetProcAddress
GetProcessPriorityBoost
GetProfileSectionW
GetVersionExA
GetVolumeInformationW
GlobalUnlock
HeapAlloc
HeapDestroy
InterlockedIncrement
IsBadHugeWritePtr
OpenMutexA
SetConsoleWindowInfo
SetThreadIdealProcessor
UnhandledExceptionFilter
UnlockFileEx
lstrcpy

user32

CallMsgFilterA
ChangeDisplaySettingsA
ChangeDisplaySettingsExW
CharLowerBuffW
CloseWindowStation
CreateIconFromResource
DdeKeepStringHandle
DrawStateW
EnableWindow
GetCursorInfo
GetKeyboardType
GetSystemMenu
GetWindowTextW
IMPGetIMEA
InSendMessageEx
IsDialogMessageA
LoadBitmapW
MonitorFromRect
RegisterLogonProcess
RegisterWindowMessageW
SetCaretBlinkTime
SetCaretPos
SetClassWord
SetMenuItemInfoA
SetWindowPlacement
SetWindowsHookExA
SwitchToThisWindow
wvsprintfA

gdi32

Arc
Chord
ColorCorrectPalette
CopyMetaFileW
CreateColorSpaceW
CreateEllipticRgn
CreatePatternBrush
EndPage
EnumFontFamiliesExA
GdiPlayJournal
GetDIBColorTable
GetDIBits
GetGlyphOutline
GetKerningPairs
GetLogColorSpaceA
GetMetaFileBitsEx
GetROP2
GetViewportOrgEx
GetWindowOrgEx
PolyPolygon
PolylineTo
SetICMProfileW
SetLayout
SetPixel
SetPolyFillMode
SetROP2
StretchDIBits

Sections

.text
Size: 512B - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 41KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

51ea5d475bf4f97236a98418f7c92b27

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 12KB

.data Size: 41KB - Virtual size: 56KB

.rdata Size: - Virtual size: 4KB

.rsrc Size: - Virtual size: 12KB

.text
Size: 512B - Virtual size: 12KB

.data
Size: 41KB - Virtual size: 56KB

.rdata
Size: - Virtual size: 4KB

.rsrc
Size: - Virtual size: 12KB