bb292157fff68075d0dbac80c3309f9e_JaffaCakes118

General

Target

bb292157fff68075d0dbac80c3309f9e_JaffaCakes118
Size

70KB
MD5

bb292157fff68075d0dbac80c3309f9e
SHA1

38c2b3437bccb706a8d4701789d97145bf87048a
SHA256

0cfb4cd6b3fa63aa706d07bc19c122c22778eb43a990b3f4c25a60f2b58406e2
SHA512

cfe8f6b1eb8404d74b715bb82de671db46011cff102a4455a24a34674354b7875fc6a38f7895d4cee29a030d437f9f4ecb5a57cf042e083e4d14125d141c7847
SSDEEP

1536:9bCUM0IXRBpu8esFoL0DIrMm9JbXvCqUrfJZjIY0O73J:FIOhsCL0OTCqUrJZjIS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bb292157fff68075d0dbac80c3309f9e_JaffaCakes118

Files

bb292157fff68075d0dbac80c3309f9e_JaffaCakes118
.exe windows:5 windows x86 arch:x86

2cfe18256ddf216186c5586b769d7780

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DrawIconEx
GetParent
InsertMenuW
GetWindowRect
DrawTextW
CreateMenu
GetFocus
CheckRadioButton
IsWindowVisible
GetSysColor
ScreenToClient
ExitWindowsEx
IsZoomed
DrawEdge
wsprintfW
DeferWindowPos
GetMessageW
FindWindowExW
CloseClipboard
EnumWindows
SetWindowTextW

kernel32

GetCurrentThreadId
GetModuleHandleW
GetCurrentProcessId
GetTickCount
GetSystemTimeAsFileTime
lstrlenA
WritePrivateProfileSectionA
GetEnvironmentVariableA
OpenThread
SetLocaleInfoA
ConsoleMenuControl
GlobalCompact
QueueUserAPC
GetDateFormatA
GlobalGetAtomNameA
CreateProcessA
GetPrivateProfileStructA
IsValidLanguageGroup
GetLastError
GlobalGetAtomNameW
SetPriorityClass
CompareFileTime
WriteProfileSectionA
SetLastConsoleEventActive
TryEnterCriticalSection

ntdll

RtlAllocateAndInitializeSid
wcscmp
RtlCopySidAndAttributesArray
RtlAnsiCharToUnicodeChar
LdrVerifyImageMatchesChecksum
_splitpath
RtlUpcaseUnicodeChar
ZwCreateProcess
RtlEnumerateGenericTableWithoutSplaying
ZwOpenSemaphore
RtlUnicodeStringToCountedOemString
LdrFindResourceDirectory_U
RtlAbsoluteToSelfRelativeSD
RtlAcquireResourceExclusive
RtlMultiByteToUnicodeN
ZwOpenSymbolicLinkObject
ZwFlushInstructionCache
_aullshr

Sections

.text
Size: 65KB - Virtual size: 65KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 721B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2cfe18256ddf216186c5586b769d7780

Headers

DLL Characteristics

File Characteristics

Imports

user32

kernel32

ntdll

Sections

.text Size: 65KB - Virtual size: 65KB

.rdata Size: 1024B - Virtual size: 721B

.data Size: 1KB - Virtual size: 13KB

.rsrc Size: 1024B - Virtual size: 1008B

.text
Size: 65KB - Virtual size: 65KB

.rdata
Size: 1024B - Virtual size: 721B

.data
Size: 1KB - Virtual size: 13KB

.rsrc
Size: 1024B - Virtual size: 1008B