88a5ca81478d5d28c3b99685bc0b94c1_JaffaCakes118

General

Target

88a5ca81478d5d28c3b99685bc0b94c1_JaffaCakes118
Size

55KB
MD5

88a5ca81478d5d28c3b99685bc0b94c1
SHA1

0c4955986075b54b972fe37ef6bf970593afb9df
SHA256

4a120becf22f5f2dd7a37132fcc059c765c8670d4360e2d37a45a0dda0e270fe
SHA512

5750b74534929e74c5f958aef8f6d4242d8e671123856854b66bf29c3cc9791412a918410373245229965b0ea1b9ea7a19deb684773271416672f560dc4c7a84
SSDEEP

1536:QyiWdTR/kejSg4I/1BvZ3w0pY6f9gPJs4tRz:5/dTR/zjSg4I/12JPJFfz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
88a5ca81478d5d28c3b99685bc0b94c1_JaffaCakes118

Files

88a5ca81478d5d28c3b99685bc0b94c1_JaffaCakes118
.exe windows:4 windows x86 arch:x86

347062ae15ff4bd28272cfbb1e0863eb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CopyFileExW
DebugActiveProcess
DefineDosDeviceA
ExitProcess
GetCommProperties
GetCommState
GetComputerNameW
GetConsoleCP
GetConsoleOutputCP
GetFileAttributesW
GetFullPathNameA
GetProcessVersion
GetProcessWorkingSetSize
GetTempFileNameA
GetTempPathW
GlobalFree
LCMapStringW
OpenFileMappingW
OpenProfileUserMapping
QueryDosDeviceW
WriteProfileStringA

user32

AnyPopup
AppendMenuW
CharToOemA
CharToOemW
CreatePopupMenu
DdeEnableCallback
EditWndProc
EndDeferWindowPos
EndDialog
EnumPropsExA
GetKeyboardLayout
GetMessageW
GetScrollInfo
GetSysColorBrush
GetTitleBarInfo
GetWindowModuleFileNameW
LoadCursorFromFileW
LoadCursorW
MonitorFromPoint
RegisterClassA
RemovePropA
RemovePropW
ScrollDC
SetClipboardData
TrackMouseEvent
TranslateMessage
UnregisterHotKey
UserClientDllInitialize
ValidateRect
keybd_event

gdi32

CreateBitmap
CreateColorSpaceW
CreateEllipticRgnIndirect
DeleteMetaFile
ExtSelectClipRgn
GetCharWidth32W
GetFontLanguageInfo
GetGlyphOutlineA
GetICMProfileA
GetMetaFileBitsEx
GetMetaFileW
GetObjectType
GetRgnBox
InvertRgn
PolyTextOutA
SetICMMode
SetLayout
SetMetaRgn
UnrealizeObject
UpdateICMRegKeyA
WidenPath

Sections

.text
Size: 512B - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

347062ae15ff4bd28272cfbb1e0863eb

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 12KB

.data Size: 8KB - Virtual size: 28KB

.idata Size: - Virtual size: 8KB

.rsrc Size: 1024B - Virtual size: 12KB

.text
Size: 512B - Virtual size: 12KB

.data
Size: 8KB - Virtual size: 28KB

.idata
Size: - Virtual size: 8KB

.rsrc
Size: 1024B - Virtual size: 12KB