a305532d2be7942515ed1643e5f40f08_JaffaCakes118

General

Target

a305532d2be7942515ed1643e5f40f08_JaffaCakes118
Size

212KB
MD5

a305532d2be7942515ed1643e5f40f08
SHA1

9b6c88e59a7df25ec50d764e5242badbc220c3d4
SHA256

4c4fa3e54362ba2a80ea41650104f1e4961e81f074761bd6b76a4ec781d3a0d3
SHA512

6869557a6e341ffb5b11921eb65663944e08bb548260905bdae45ca58fbf2fbc0fd6ec9ec5c3816d25891c534d822a99cdc798755fa5c7459210edb28abe18da
SSDEEP

3072:70xQTTINtyb/XMIVcs7h2uDFjfY7CKrTdmkWMbQ7sw1QvP4xmD7LfOMu84u5w5BB:70NbyD5GsFHBgCKHHvw6vP4sW0csTAEM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a305532d2be7942515ed1643e5f40f08_JaffaCakes118

Files

a305532d2be7942515ed1643e5f40f08_JaffaCakes118
.exe windows:4 windows x86 arch:x86

57127e53a6ac89e0b3d06c9f9c019339

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

EnumFontFamiliesExA
EnumFontFamiliesExW
EnumMetaFile
GetNearestPaletteIndex
GetPaletteEntries
GetWindowExtEx
IntersectClipRect
Pie
PolylineTo
SetWindowOrgEx
StretchDIBits

shell32

ExtractIconExW
SHCreateDirectoryExW
SHGetFolderPathW
ShellExecuteEx
Shell_NotifyIconW

kernel32

EnumCalendarInfoA
FindNextFileA
FreeLibrary
GetConsoleOutputCP
GetFileSize
GetFileType
GetModuleFileNameA
GetProcessHeap
GetShortPathNameA
GetStartupInfoW
GetSystemDirectoryW
GetTickCount
GetVersion
HeapAlloc
InterlockedIncrement
LocalFree
MultiByteToWideChar
ResumeThread
SetStdHandle
TlsSetValue
WriteConsoleA
WriteFile
lstrcatA
lstrcpyA

user32

CheckMenuItem
CreateWindowExA
DestroyMenu
EnableMenuItem
GetDlgItem
GetLastActivePopup
GetScrollInfo
GetWindowDC
GetWindowRect
InflateRect
IsZoomed
MessageBeep
PtInRect
RemovePropA
SendMessageA
SetCapture
SetWindowsHookExA
SystemParametersInfoA
TranslateMessage
UnhookWindowsHookEx
UnregisterClassA
WaitMessage

Sections

.text
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

57127e53a6ac89e0b3d06c9f9c019339

Headers

File Characteristics

Imports

gdi32

shell32

kernel32

user32

Sections

.text Size: 88KB - Virtual size: 88KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 98KB - Virtual size: 98KB

.rsrc Size: 22KB - Virtual size: 140KB

.text
Size: 88KB - Virtual size: 88KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 98KB - Virtual size: 98KB

.rsrc
Size: 22KB - Virtual size: 140KB