9ff9ed7ea5b4253d934f3b9cdea3a135_JaffaCakes118

General

Target

9ff9ed7ea5b4253d934f3b9cdea3a135_JaffaCakes118
Size

42KB
MD5

9ff9ed7ea5b4253d934f3b9cdea3a135
SHA1

3a110c3f72accb7a566fddd706260ead8f10a9f5
SHA256

48e7f0ea6c5f43d9b90497a89a5d7d3ae890ac8c79a13df27ad838ec4090c3f1
SHA512

c37c3197764e5653cb06b6151cd774daa94d1f8050182dee10dcba0b0b68897d2e4d42bc068de3b606c404181eb709f144e9eba4fbca96706d600df440261f98
SSDEEP

768:G3CA/nziuRzmAsysDpnkYJrf+0PluDaR5bLzTDYSwAIoO+xZHcPnAkRRipIixLxD:GSA/Gu1mAsRSarfNuWLsSRIjccPnA6Rq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9ff9ed7ea5b4253d934f3b9cdea3a135_JaffaCakes118

Files

9ff9ed7ea5b4253d934f3b9cdea3a135_JaffaCakes118
.exe windows:4 windows x86 arch:x86

90de3eac91c37d671480a7103206cb8b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

AllocConsole
ConvertDefaultLocale
CreateIoCompletionPort
CreateProcessA
CreateWaitableTimerW
DefineDosDeviceW
DeleteFileA
ExitProcess
FlushConsoleInputBuffer
FoldStringW
FreeLibrary
GetConsoleCursorInfo
GetDateFormatW
GetEnvironmentVariableW
GlobalAddAtomA
LocalSize
OpenSemaphoreW
PrepareTape
ReadDirectoryChangesW
SetConsoleWindowInfo
SetLocaleInfoA
SetStdHandle
SignalObjectAndWait
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualAlloc
WriteFileEx

user32

AdjustWindowRectEx
CharPrevExA
CheckMenuRadioItem
ClientToScreen
CloseWindow
CopyImage
DdeCreateDataHandle
DdeUninitialize
EnableMenuItem
GetActiveWindow
GetClipCursor
GetKeyNameTextW
GetMenuBarInfo
GetMenuItemRect
GetProcessDefaultLayout
GetScrollBarInfo
GetTabbedTextExtentW
GetThreadDesktop
IsDialogMessageA
IsWindow
IsWindowUnicode
MapVirtualKeyExA
RegisterClassA
ShowScrollBar
ShowWindow
TabbedTextOutA
WinHelpW
WindowFromDC

gdi32

CheckColorsInGamut
CreateDCW
CreateEllipticRgnIndirect
CreatePalette
CreateSolidBrush
DescribePixelFormat
FloodFill
GetEnhMetaFileDescriptionA
GetEnhMetaFileHeader
GetMetaFileA
GetMetaFileW
GetOutlineTextMetricsA
GetPolyFillMode
GetStockObject
GetStretchBltMode
GetTextExtentPointW
GetTextFaceA
LPtoDP
ModifyWorldTransform
Polygon
SetColorAdjustment
SetPixel
StartPage
UpdateColors

Sections

.text
Size: 512B - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

90de3eac91c37d671480a7103206cb8b

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 20KB

.data Size: 40KB - Virtual size: 48KB

.idata Size: - Virtual size: 12KB

.rsrc Size: - Virtual size: 12KB

.text
Size: 512B - Virtual size: 20KB

.data
Size: 40KB - Virtual size: 48KB

.idata
Size: - Virtual size: 12KB

.rsrc
Size: - Virtual size: 12KB