77eea37df5e69a18eae5e407647c7d6f_JaffaCakes118

General

Target

77eea37df5e69a18eae5e407647c7d6f_JaffaCakes118
Size

56KB
MD5

77eea37df5e69a18eae5e407647c7d6f
SHA1

5b6e15e830c6f7af74c80fc3196509f67077e0b1
SHA256

e78b2dc114e5d2c679870ed33ba3b1482eda2f98a609a7351d3cc2837c5f7b72
SHA512

fd2e8985d3092c0c7b5a3f4a87582e9d6cf2220d1e8a2c411f7885615b71655b73e69dc20415c0b3c14e4a6880215b68499310ff7c74bf39c53b808e75a673e5
SSDEEP

1536:L/L3lshd8avfVhh5Q1qpW8oOxdxzPv07k:/3SffVSs8Of9/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
77eea37df5e69a18eae5e407647c7d6f_JaffaCakes118

Files

77eea37df5e69a18eae5e407647c7d6f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4eab62cc098a8fc9fc167f11320fd720

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BackupRead
ClearCommBreak
CommConfigDialogA
CreatePipe
EnumDateFormatsExA
ExitProcess
GetCompressedFileSizeW
GetCurrencyFormatA
GetCurrencyFormatW
GetDiskFreeSpaceA
GetPrivateProfileSectionW
GlobalGetAtomNameW
GlobalLock
Heap32ListNext
IsBadHugeWritePtr
LockFileEx
SetConsoleTitleA
SetLocalTime
SetLocaleInfoW
SetMessageWaitingIndicator
SwitchToFiber
TerminateProcess
TerminateThread
VirtualFree
WriteProfileSectionW
lstrcmpA

user32

CharPrevW
CloseWindow
CopyAcceleratorTableW
DdeInitializeA
DialogBoxIndirectParamA
DlgDirSelectComboBoxExW
DrawIcon
GetCaretPos
GetDlgCtrlID
GetDlgItemTextA
GetKBCodePage
GetWindowThreadProcessId
OpenIcon
SendNotifyMessageW
SetMenuContextHelpId
SetRect
SetSysColors
UserClientDllInitialize
VkKeyScanA
wsprintfA

gdi32

ColorMatchToTarget
CreateDIBPatternBrushPt
CreatePen
EnumFontFamiliesA
FillPath
FrameRgn
GetCharABCWidthsW
GetCharWidth32A
GetCharWidthA
GetFontLanguageInfo
GetGlyphOutlineW
GetICMProfileA
GetICMProfileW
GetLogColorSpaceW
GetTextColor
ModifyWorldTransform
PlayEnhMetaFile
PolyPolyline
RectVisible
SetBitmapDimensionEx
SetDIBColorTable
SetFontEnumeration
SetStretchBltMode
UpdateICMRegKeyA

Sections

.text
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 54KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4eab62cc098a8fc9fc167f11320fd720

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 8KB

.data Size: 54KB - Virtual size: 64KB

.idata Size: - Virtual size: 12KB

.rsrc Size: - Virtual size: 8KB

.text
Size: 512B - Virtual size: 8KB

.data
Size: 54KB - Virtual size: 64KB

.idata
Size: - Virtual size: 12KB

.rsrc
Size: - Virtual size: 8KB