834a7ee4425fb9f1eae3092fee886e4c_JaffaCakes118

General

Target

834a7ee4425fb9f1eae3092fee886e4c_JaffaCakes118
Size

89KB
MD5

834a7ee4425fb9f1eae3092fee886e4c
SHA1

28dea6282204e4db607e70820aad4d6837576eec
SHA256

662848465e5b39d9de7d4f8fafd58fb62c0d6054e0ba0864049f8edc89b43a4e
SHA512

14e24f1366f66eb663807ddcd8555d5002209be6deff78e6c47ba326d5fc6ecf833935c127332d1440ee7b41c6eed53087582b7f3622e0e6e96d794f6547e2ee
SSDEEP

1536:GILdMAnk778GaeqnZcTXpdoT2oDHpJUK8YWP9zwih02XX1kCT:DdGQGaDC5dET7UK85zlh02HD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
834a7ee4425fb9f1eae3092fee886e4c_JaffaCakes118

Files

834a7ee4425fb9f1eae3092fee886e4c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9c0a48dd24f2fc41d15304b4b734b94a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

ReadConsoleOutputCharacterW
VirtualFree
VirtualProtect
GetUserDefaultLCID
Thread32First
GetDriveTypeA
DeleteTimerQueue
GetDriveTypeW
GetLastError
SetFilePointerEx
lstrcatW
SearchPathW
WriteFileGather
CloseConsoleHandle
GetPrivateProfileStructW
SetConsoleCursorInfo
GetFullPathNameW

user32

DestroyMenu
SendIMEMessageExW
EndDialog
GetClassInfoExA
WinHelpA
GetClassLongW
SetDlgItemTextW
CharLowerW
SetScrollPos
ScrollDC
EnumWindows
SetScrollInfo
CharUpperW
CharLowerBuffW
GetCursorInfo
GetClassWord
SetSystemMenu
PostQuitMessage
OpenDesktopW
ImpersonateDdeClientWindow
GetSysColor
IsCharUpperA
SetProcessDefaultLayout
UpdatePerUserSystemParameters
MenuWindowProcA
GetDlgItemInt
ChildWindowFromPointEx
FlashWindowEx
GrayStringW
DdePostAdvise
TranslateAccelerator

gdi32

GdiQueryFonts
SetAbortProc
GetMapMode
StartPage
GdiConvertDC
EngStrokeAndFillPath
XFORMOBJ_bApplyXform
UnloadNetworkFonts
GetPixel
GetDCBrushColor
GetColorSpace
GdiEntry6
GetCharWidthFloatW
EnumFontsA
RoundRect
DeleteColorSpace
SetBoundsRect

comdlg32

PageSetupDlgW
GetFileTitleA
CommDlgExtendedError
ChooseFontW
GetOpenFileNameA
FindTextW
WantArrows
PrintDlgA
ReplaceTextW
ChooseColorW
GetSaveFileNameA
dwLBSubclass
FindTextA

Sections

.text
Size: 4KB - Virtual size: 172KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 81KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

9c0a48dd24f2fc41d15304b4b734b94a

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

Sections

.text Size: 4KB - Virtual size: 172KB

.data Size: 81KB - Virtual size: 84KB

.idata Size: 2KB - Virtual size: 4KB

.text
Size: 4KB - Virtual size: 172KB

.data
Size: 81KB - Virtual size: 84KB

.idata
Size: 2KB - Virtual size: 4KB