ab91198db5fdb0bf71e261cb761a940c_JaffaCakes118

General

Target

ab91198db5fdb0bf71e261cb761a940c_JaffaCakes118
Size

225KB
MD5

ab91198db5fdb0bf71e261cb761a940c
SHA1

329354755ae5b6ecd24bb75d4dcac42f2873a26b
SHA256

4e9c96c65f7aba875fa88a3cd86912d85d0c894b97fe14f124027c27e4b3972e
SHA512

631e5a99f0087b0e36ef9bf4458dee18b79dc8d703eb3004935afc120e34a7bf8e4c3adc2d6681b9752eb97ea6330c0d15b550118de524cbcb0b9e334e492cb7
SSDEEP

6144:B+c7nYwDdCk9qaSxj2VaiQMjd1Hn06AjI+e9ZF9ST4wgzEy:B+c7zdCfaSxyVZQMjd1HnWj98Z2bgzEy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ab91198db5fdb0bf71e261cb761a940c_JaffaCakes118

Files

ab91198db5fdb0bf71e261cb761a940c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8134e5180c44ad901c03190da99453f9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

Beep
CopyFileExA
CreateFiber
CreateMailslotW
EraseTape
ExitProcess
GetLocaleInfoW
GetPrivateProfileSectionA
GetProcessPriorityBoost
GetProcessVersion
GetProfileStringA
GetStringTypeW
GlobalSize
MapViewOfFile
OpenSemaphoreW
PeekConsoleInputA
PulseEvent
QueryDosDeviceW
SetConsoleTitleW
SetTapePosition
UnlockFile
WriteConsoleOutputCharacterA
WritePrivateProfileStringA
WriteProfileSectionA

user32

BeginPaint
CharLowerA
CharLowerBuffA
CheckRadioButton
CreateIconIndirect
DrawAnimatedRects
GetActiveWindow
GetInputDesktop
GetKeyNameTextA
GetKeyboardLayout
GetListBoxInfo
GetMenu
GetPriorityClipboardFormat
LookupIconIdFromDirectory
ModifyMenuA
RegisterLogonProcess
RegisterWindowMessageW
SetClassWord
SetClipboardViewer
SetScrollPos
SetSystemCursor
SetUserObjectSecurity
TileWindows
UnloadKeyboardLayout
UnlockWindowStation
UnregisterClassW
wsprintfW

gdi32

CreateICA
CreateICW
CreatePen
CreatePolygonRgn
EqualRgn
GetCharWidthA
GetCharWidthW
GetDeviceGammaRamp
GetMetaFileW
GetObjectW
GetPixel
GetTextExtentPoint32A
GetTextExtentPointA
GetTextExtentPointW
GetWinMetaFileBits
LPtoDP
OffsetRgn
PtInRegion
RectInRegion
RemoveFontResourceA
SetDIBits
SetWindowExtEx

Sections

.text
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 223KB - Virtual size: 236KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 216KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8134e5180c44ad901c03190da99453f9

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 8KB

.data Size: 223KB - Virtual size: 236KB

.idata Size: - Virtual size: 4KB

.rsrc Size: 1024B - Virtual size: 216KB

.text
Size: 512B - Virtual size: 8KB

.data
Size: 223KB - Virtual size: 236KB

.idata
Size: - Virtual size: 4KB

.rsrc
Size: 1024B - Virtual size: 216KB