a4df17b59d7c2bc3803b86819fb09132_JaffaCakes118

General

Target

a4df17b59d7c2bc3803b86819fb09132_JaffaCakes118
Size

42KB
MD5

a4df17b59d7c2bc3803b86819fb09132
SHA1

08feffa06d1d3dc655dfb32038e786cb430a6afc
SHA256

9595061b1258cbf30077e154a73cadd202e51e66aefc1141a2489d33d033123c
SHA512

b4767db82f384b7505c4f129ffb7952a97ec73f4cab04d3a0f41176b2503436df9d84a1d7f62d3d0d11fd537cc93141860899bbbf7a246541ee7321d62610136
SSDEEP

768:39D96c6wRhWxOl3dsHdGp7Wq77noJelCFYBY1:BxRhWxOCd4aUnXq1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a4df17b59d7c2bc3803b86819fb09132_JaffaCakes118

Files

a4df17b59d7c2bc3803b86819fb09132_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9c4222db55445b62e36d8a0aaa827475

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalWire
GetPrivateProfileSectionNamesW
LockFile
GetDefaultCommConfigW
WaitForSingleObjectEx
EnumSystemLanguageGroupsW
VirtualProtect
GetLongPathNameA
GetComputerNameExA
GetDriveTypeW
CreateHardLinkA
GetFileType
SetConsoleMaximumWindowSize
Process32First
WideCharToMultiByte
IsValidCodePage
GetLastError
DeleteTimerQueueTimer
GetNumberOfConsoleFonts
CreateThread
LoadLibraryW
FindFirstVolumeA
SetFileApisToANSI
FindAtomW
Beep

user32

DestroyWindow
ShowCursor
EnumDesktopWindows
DdeSetQualityOfService
EnableScrollBar
IsWindowEnabled
SetCaretBlinkTime
SetCursorContents
UpdateLayeredWindow
AlignRects
ShowScrollBar
InsertMenuW

gdi32

GetColorAdjustment
GetGlyphOutlineA
GdiInitSpool
GetGlyphIndicesA
GdiCreateLocalMetaFilePict
GetMetaFileBitsEx
GetPolyFillMode
EngAssociateSurface
SetWinMetaFileBits
GdiGetSpoolFileHandle
GdiPlayPrivatePageEMF
GetTextFaceA
GetCharWidth32A
Polyline
SelectPalette
StretchDIBits
CancelDC
GdiProcessSetup
GdiEndPageEMF
SetViewportExtEx
InvertRgn

comdlg32

PrintDlgExA
WantArrows
LoadAlterBitmap
GetOpenFileNameA
ReplaceTextW
ChooseColorW
GetSaveFileNameA
ChooseFontW
GetFileTitleA
PrintDlgW
dwOKSubclass

Sections

.text
Size: 4KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 34KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

9c4222db55445b62e36d8a0aaa827475

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

Sections

.text Size: 4KB - Virtual size: 72KB

.data Size: 34KB - Virtual size: 36KB

.idata Size: 2KB - Virtual size: 4KB

.text
Size: 4KB - Virtual size: 72KB

.data
Size: 34KB - Virtual size: 36KB

.idata
Size: 2KB - Virtual size: 4KB