95d18c748e04416449b10f7b758e8df6_JaffaCakes118

General

Target

95d18c748e04416449b10f7b758e8df6_JaffaCakes118
Size

272KB
MD5

95d18c748e04416449b10f7b758e8df6
SHA1

53d5098dbf12f8182ea96b3dc98cdff5a5e54122
SHA256

31ec7e0b839031b343d939b03a346a569d69f6f3d811cc3203f890122244f1b9
SHA512

11df8c8cbef3d70fbdf802a0f67844f7164f8a6c3872e564a870d9cdff792827031cb0eb8bf3f2d22d7ddedbdc8851c48be0b1297f0ca224792b86afde5a46d2
SSDEEP

6144:pmzVnNOl3jgMEudMPPcvxsiIcrlGgZk1whsmJl6u2ZQkOSTzz:gxnc1sG+Pce/olGge1whsmjyZQkBT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
95d18c748e04416449b10f7b758e8df6_JaffaCakes118

Files

95d18c748e04416449b10f7b758e8df6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

00af7414297bd9a06a3d200f893f3624

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

CancelIo
CreateToolhelp32Snapshot
EnumTimeFormatsA
ExitProcess
FormatMessageA
GetCPInfoExA
GetDevicePowerState
GetProfileSectionW
GetTapeParameters
GetTickCount
GlobalUnWire
LoadResource
SetSystemPowerState
SetVolumeLabelW
SizeofResource
UpdateResourceA
WritePrivateProfileStructW
WriteProfileStringA
_llseek
lstrcatA
lstrcpynA

user32

CreateDialogIndirectParamA
DdeCreateStringHandleW
DdeUninitialize
EndDeferWindowPos
EnumDesktopsW
EnumPropsExW
FindWindowW
GetAsyncKeyState
GetClassInfoA
GetClassInfoExA
GetInputDesktop
GetShellWindow
GetTabbedTextExtentA
GetWindowWord
GrayStringA
InSendMessageEx
IntersectRect
IsCharAlphaW
LoadMenuIndirectA
MessageBoxW
SendNotifyMessageW
SetClipboardViewer
SetMenuDefaultItem
TranslateAcceleratorA

gdi32

ChoosePixelFormat
CreateCompatibleDC
CreateDIBPatternBrushPt
CreateDIBitmap
CreateICW
CreatePolygonRgn
CreateRectRgn
CreateScalableFontResourceW
EnumICMProfilesW
Escape
GetClipRgn
GetCurrentObject
OffsetWindowOrgEx
Pie
PlayMetaFile
RemoveFontResourceW
SetBkMode
SetColorAdjustment
SetStretchBltMode
SetWinMetaFileBits

Sections

.text
Size: 512B - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 268KB - Virtual size: 288KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 492KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

00af7414297bd9a06a3d200f893f3624

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 16KB

.data Size: 268KB - Virtual size: 288KB

.rdata Size: - Virtual size: 8KB

.rsrc Size: 2KB - Virtual size: 492KB

.text
Size: 512B - Virtual size: 16KB

.data
Size: 268KB - Virtual size: 288KB

.rdata
Size: - Virtual size: 8KB

.rsrc
Size: 2KB - Virtual size: 492KB