a08d401843f5ea60ff88bd64d8fd85f4_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a08d401843f5ea60ff88bd64d8fd85f4_JaffaCakes118
Size

70KB
MD5

a08d401843f5ea60ff88bd64d8fd85f4
SHA1

dbecfccb718bf02152051b91f699721928dc0fcd
SHA256

e32c64908d3bccc6cd897f6929196859bee4e951d06713c249d2cad0f8331811
SHA512

c7258c553264c545eaf9310e0a99e84fb905cf9e1fc76e9db6d52a2b2f0aad81fd2a2e6770ef55c22d7b525207734ece465f383cad5043053e513034531b9001
SSDEEP

1536:9HW4dnwN6Qt6C2lbjCreHyLlVJAOErjxOnf8xAM1Uuo+:9HDdw3t6CijGeIVyX/xOfCUuo+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a08d401843f5ea60ff88bd64d8fd85f4_JaffaCakes118

Files

a08d401843f5ea60ff88bd64d8fd85f4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

67f1ce1166a1fe8640c7a142dd1d4497

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnumResourceTypesW
GetSystemPowerStatus
GetStringTypeExA
WaitForSingleObjectEx
SetConsolePalette
PurgeComm
WriteConsoleInputVDMW
WriteConsoleOutputCharacterA
GlobalReAlloc
PeekConsoleInputW
SetConsoleInputExeNameW
GetHandleInformation
ContinueDebugEvent
lstrlen
AddAtomA
BuildCommDCBA
GetTimeZoneInformation
LocalLock
VirtualAlloc
GetCommConfig
VerLanguageNameW
DisconnectNamedPipe
ReadProcessMemory
FindNextFileA
FatalAppExitW
GlobalCompact
SetConsoleTextAttribute
GetCurrentThreadId
FreeLibraryAndExitThread
RegisterConsoleVDM
GetConsoleAliasExesLengthA
SetConsoleHardwareState
SleepEx
GetStringTypeExW
GetConsoleOutputCP
ConvertDefaultLocale
CmdBatNotification
GetConsoleKeyboardLayoutNameW
MultiByteToWideChar

user32

CharToOemA
GetScrollInfo
MB_GetString
IsCharLowerA
RedrawWindow
GetWindowLongW
MBToWCSEx
ChangeDisplaySettingsA
GetScrollPos
GetInputDesktop
OpenWindowStationA
ClientToScreen
DdeFreeStringHandle
IsCharAlphaA
RegisterClipboardFormatW
PeekMessageA
SetRectEmpty
GetUpdateRgn
GetCaretBlinkTime
CreateWindowExW
IsDialogMessageW
MenuItemFromPoint
DrawFrameControl
SetMessageExtraInfo
LoadCursorFromFileW
CreateDialogIndirectParamA
SetForegroundWindow
VkKeyScanExW
OemToCharA
OemKeyScan
DestroyCursor
PackDDElParam
DdeReconnect
InsertMenuA
CreateWindowStationA
GetKeyboardType
SetCapture

gdi32

CreatePen
PathToRegion
GdiGetLocalDC
GetTextExtentExPointA
GdiDllInitialize
GetTextMetricsW
cGetTTFFromFOT
EnumFontFamiliesW
GetTransform
GdiConvertDC
Ellipse
GetTextMetricsA
CreateRectRgnIndirect
DeviceCapabilitiesExW
SetBkColor
RemoveFontResourceTracking
SetBitmapBits
FloodFill
GetTextColor
EnumObjects
GdiConvertEnhMetaFile
SaveDC
SetBoundsRect
GdiAddGlsRecord

Sections

.text
Size: 25KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 19KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

67f1ce1166a1fe8640c7a142dd1d4497

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 25KB - Virtual size: 28KB

.data Size: 25KB - Virtual size: 116KB

.idata Size: 19KB - Virtual size: 108KB

.text
Size: 25KB - Virtual size: 28KB

.data
Size: 25KB - Virtual size: 116KB

.idata
Size: 19KB - Virtual size: 108KB