bef8f550d8465dd360367d239f2a8c51_JaffaCakes118

General

Target

bef8f550d8465dd360367d239f2a8c51_JaffaCakes118
Size

69KB
MD5

bef8f550d8465dd360367d239f2a8c51
SHA1

34eb473f380ae2ed7e6ed8f3f890f0a7c8e93503
SHA256

279f515e8126f3d454c0ea8d2a9f38708f3a5b1ce25d8a076c521be400968506
SHA512

6adee3a5bf3b1af006a90d32e22810d1c163def25cfecc62fd7d6247cae1d93ff048eca234678ad69d07e795a7b20770012e9573147f8e2a1425607b98c8b3e8
SSDEEP

1536:HUlIkH3ImQlLc9Af0B/p/QgD/O5Zv/+sOpep:HcNYbwAfwp/jGR3Ocp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bef8f550d8465dd360367d239f2a8c51_JaffaCakes118

Files

bef8f550d8465dd360367d239f2a8c51_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b141ded3d79b837e9a7f9858168ef3cf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MapViewOfFileEx
SetTapePosition
GetConsoleCP
LCMapStringW
ExpungeConsoleCommandHistoryW
GetTimeZoneInformation
SetConsoleMenuClose
AddAtomA
HeapLock
QueryPerformanceFrequency
WaitForMultipleObjectsEx
ReadConsoleW
GetCompressedFileSizeA
lstrcpyA
SetTapeParameters
DosDateTimeToFileTime
VirtualAlloc
QueueUserAPC
BackupSeek
OpenWaitableTimerA
GetOEMCP
GetStringTypeExA
SetCommBreak
RemoveDirectoryW
GetCurrentThreadId
CommConfigDialogW
RtlZeroMemory
WritePrivateProfileStringW
IsBadHugeWritePtr
SetThreadLocale
UnlockFileEx

user32

SetMessageQueue
GetCursorInfo
DestroyCaret
CreateWindowExW
SetSystemMenu
DdeAccessData
MenuItemFromPoint
DdeQueryStringW
WaitMessage
CharUpperBuffA
GetKeyboardState
IsWindowEnabled
SetPropW
GetDlgItem
DrawEdge
mouse_event
UserRegisterWowHandlers
LoadMenuIndirectA
ShowStartGlass
LockWindowStation
ReuseDDElParam

gdi32

GdiInitSpool
PolyPatBlt
ExtSelectClipRgn
StartPage
GetArcDirection
FillPath
Chord
CreateCompatibleDC
SetROP2
PlayMetaFileRecord
PolyPolygon
GetCurrentPositionEx
SetICMProfileW
GetEnhMetaFileDescriptionA
CreateDIBitmap
GetPixel
AngleArc
GdiGetBatchLimit
SetWorldTransform
GdiFlush
TranslateCharsetInfo
UpdateICMRegKeyA
GetMiterLimit
GetAspectRatioFilterEx
FloodFill
NamedEscape
GetTextExtentPointA
ArcTo
GetCharWidth32W
BitBlt
UnrealizeObject
SetPaletteEntries
GdiCreateLocalMetaFilePict
GdiDescribePixelFormat
SetStretchBltMode
SaveDC
CloseEnhMetaFile
DeleteObject
CreateEnhMetaFileW
EnumFontsW
EnumFontFamiliesA
SetColorSpace

Sections

.data
Size: 2KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 62KB - Virtual size: 148KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b141ded3d79b837e9a7f9858168ef3cf

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.data Size: 2KB - Virtual size: 40KB

.text Size: 62KB - Virtual size: 148KB

.idata Size: 4KB - Virtual size: 68KB

.data
Size: 2KB - Virtual size: 40KB

.text
Size: 62KB - Virtual size: 148KB

.idata
Size: 4KB - Virtual size: 68KB