96bd847990ec68f91d5b7e817fce2939_JaffaCakes118

General

Target

96bd847990ec68f91d5b7e817fce2939_JaffaCakes118
Size

41KB
MD5

96bd847990ec68f91d5b7e817fce2939
SHA1

7aa2fcbb300c92b8f43719c7324cfe9ec379edcd
SHA256

19a97a7d44d4ecbccec75e4f575f33845a1ec32b56093b21cc3594050c16aabd
SHA512

332e858fb1aef224ad117e9859e5a7090491b1718b2ab32f5ae82f1298264570836ec57ffa8fea257dcf57441a939a8a21fcbbc16634cf775112b1280544b6ef
SSDEEP

768:7bcc2+5clRkKS7Eag8+FmJ7XhpnoDEFpdTnxYE/ZF90:7bccnxwFm5XhpnoIXFxYMn90

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
96bd847990ec68f91d5b7e817fce2939_JaffaCakes118

Files

96bd847990ec68f91d5b7e817fce2939_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1771048f17eab32fdb2ea38c84b84887

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CancelDeviceWakeupRequest
CompareStringW
CreateFileMappingA
ExitProcess
GetCommandLineA
GetDiskFreeSpaceExW
GetTapePosition
GlobalMemoryStatus
GlobalUnWire
LoadResource
LocalShrink
Module32First
OpenFile
OpenMutexW
SetCommState
SetFilePointer
SetProcessAffinityMask
SwitchToThread
WriteConsoleInputW
WriteTapemark

advapi32

BuildExplicitAccessWithNameW
BuildImpersonateTrusteeA
BuildTrusteeWithNameA
CryptEncrypt
CryptEnumProvidersW
CryptSetProviderExA
CryptSetProviderW
EnumServicesStatusA
GetAclInformation
GetKernelObjectSecurity
GetNamedSecurityInfoExW
GetOverlappedAccessResults
IsValidSecurityDescriptor
LookupAccountNameW
LookupSecurityDescriptorPartsA
RegEnumValueA
RegNotifyChangeKeyValue
RegOpenKeyW
RegQueryValueA
RegUnLoadKeyA
SetNamedSecurityInfoA
SetNamedSecurityInfoExA
SetSecurityInfoExW
TrusteeAccessToObjectW
UnlockServiceDatabase

user32

CallMsgFilter
CallWindowProcW
CopyAcceleratorTableW
CreateDesktopW
DispatchMessageW
EnumDisplayMonitors
EnumDisplaySettingsA
EnumDisplaySettingsExA
FindWindowExA
FlashWindowEx
GetClassWord
GetDlgCtrlID
GetInputDesktop
GetInternalWindowPos
GetKeyboardLayoutList
GetKeyboardLayoutNameW
GetKeyboardState
GetMenu
GetScrollBarInfo
GetScrollPos
GetWindow
GetWindowRgn
GetWindowTextW
RegisterTasklist
ReleaseDC
RemovePropW
SendMessageTimeoutA
SetLogonNotifyWindow
UnpackDDElParam
WindowFromPoint

Sections

.text
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1771048f17eab32fdb2ea38c84b84887

Headers

File Characteristics

Imports

kernel32

advapi32

user32

Sections

.text Size: 512B - Virtual size: 8KB

.data Size: 40KB - Virtual size: 44KB

.idata Size: - Virtual size: 4KB

.rsrc Size: - Virtual size: 4KB

.text
Size: 512B - Virtual size: 8KB

.data
Size: 40KB - Virtual size: 44KB

.idata
Size: - Virtual size: 4KB

.rsrc
Size: - Virtual size: 4KB