a2c579ff0fe8d0f4ceca6cb35467db5c_JaffaCakes118

General

Target

a2c579ff0fe8d0f4ceca6cb35467db5c_JaffaCakes118
Size

39KB
MD5

a2c579ff0fe8d0f4ceca6cb35467db5c
SHA1

c8f22ff8b78571739649f638cd2c1efa9a66a73c
SHA256

fa5e2693d0ff5c2c3202a7690390d9edb268e2a5cb39e4d9938664d0c8236e75
SHA512

855408910b94cc955530957d38cf7f2fd2a2b429006045ef47826625e11fdf9b27a05e0c4ea5b20756e9dced3a46a4fd4f7c1d68e66931433c34db066ffeed5c
SSDEEP

768:fNtNjpq0QkASyRFPgd1+BdEYWE4vugVpvHj+mmi3h9ErkEv6FEoDopILN/TR1He:1tNjpTAZP7Bz4H7vHjrmi3ot2LRR1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a2c579ff0fe8d0f4ceca6cb35467db5c_JaffaCakes118

Files

a2c579ff0fe8d0f4ceca6cb35467db5c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

cf593b8238f200662d282cd3fd8df1f4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareStringA
CopyFileExW
CreateFiber
CreateMutexW
CreateSemaphoreW
CreateWaitableTimerA
DebugActiveProcess
ExitProcess
GetCalendarInfoW
GetFullPathNameA
GetProcessVersion
GetSystemInfo
GetTimeFormatW
GlobalGetAtomNameA
OpenWaitableTimerW
PeekNamedPipe
ReadConsoleOutputAttribute
ReadConsoleOutputCharacterA
SetConsoleActiveScreenBuffer
SetEndOfFile
SetSystemTime
SleepEx
WaitForMultipleObjects
WriteConsoleOutputW
_hwrite

user32

AlignRects
CreateIconFromResource
DdeFreeStringHandle
DdeSetQualityOfService
DrawIcon
FreeDDElParam
GetDoubleClickTime
GetMenu
GetMenuItemInfoA
IsDialogMessage
LoadAcceleratorsW
LockWindowUpdate
ModifyMenuA
MonitorFromPoint
OemToCharBuffA
PostThreadMessageA
RegisterClassA
RegisterTasklist
SendMessageTimeoutA
SetUserObjectInformationW
SetWindowRgn
TranslateMessage
WINNLSGetIMEHotkey

gdi32

CreateHatchBrush
CreateRectRgn
DescribePixelFormat
EndPath
EnumICMProfilesW
FixBrushOrgEx
GdiComment
GdiGetBatchLimit
GdiPlayScript
GetCharABCWidthsFloatA
GetClipBox
GetEnhMetaFileBits
GetEnhMetaFileW
GetFontData
GetObjectType
GetStockObject
GetSystemPaletteEntries
GetTextMetricsW
PaintRgn
Pie
PlayEnhMetaFileRecord
PolyTextOutA
Polyline
SelectObject
SetArcDirection
SetDeviceGammaRamp
SetGraphicsMode
SetWindowOrgEx
StretchBlt

Sections

.text
Size: 512B - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 38KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xdata
Size: - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cf593b8238f200662d282cd3fd8df1f4

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 16KB

.data Size: 38KB - Virtual size: 48KB

.xdata Size: - Virtual size: 16KB

.rsrc Size: - Virtual size: 8KB

.text
Size: 512B - Virtual size: 16KB

.data
Size: 38KB - Virtual size: 48KB

.xdata
Size: - Virtual size: 16KB

.rsrc
Size: - Virtual size: 8KB