cf03e6e71d3594ea2550e14d37a0e8d1_JaffaCakes118

General

Target

cf03e6e71d3594ea2550e14d37a0e8d1_JaffaCakes118
Size

228KB
MD5

cf03e6e71d3594ea2550e14d37a0e8d1
SHA1

0244bea24454cf25bf324c5ea401cc6e60bb2f17
SHA256

4eacb0a00c0c39c404bead5881e88ce9cb3183a1a1c1e094b32e85201bd3dae6
SHA512

43a1b79e664a4623e4f65033ea6e3ab0ff2bd6227123c28f4eaa3c5128a787512c48546bded393c3760de2dfb7f3c795aa29329a1fd1db86be6f85a638a54f12
SSDEEP

6144:+LQtWKMFIn8NjqKNTbQF3NmTojbZ1CBnoUNW1kk:RtW5+auKNTbg9mToZ1qo+WKk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cf03e6e71d3594ea2550e14d37a0e8d1_JaffaCakes118

Files

cf03e6e71d3594ea2550e14d37a0e8d1_JaffaCakes118
.exe windows:4 windows x86 arch:x86

86e48c12c96a5ee16d064dea7dfe334d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

CancelIo
CompareStringW
CreateNamedPipeA
CreateSemaphoreW
DeviceIoControl
EnumCalendarInfoA
ExitProcess
FreeEnvironmentStringsW
FreeLibrary
FreeLibraryAndExitThread
GetCPInfoExW
GetCalendarInfoA
GetCurrencyFormatW
GetDefaultCommConfigW
GetFullPathNameW
GetStringTypeExW
GlobalGetAtomNameW
MoveFileA
MoveFileExW
MultiByteToWideChar
OpenWaitableTimerW
ReadFileScatter
SetHandleCount
SetLocalTime
WaitForMultipleObjects
WaitForMultipleObjectsEx
WriteFileEx
_lread
lstrlenW

user32

ArrangeIconicWindows
CallMsgFilterW
CharToOemA
CheckRadioButton
DdeSetUserHandle
DefFrameProcA
DefFrameProcW
DispatchMessageW
DrawIconEx
GetCapture
GetClassInfoW
GetClipboardFormatNameA
GetForegroundWindow
GetMenuItemRect
GetScrollInfo
IsWindow
MessageBoxExW
NotifyWinEvent
SendMessageCallbackW
SetMenuContextHelpId
WINNLSGetIMEHotkey
WaitMessage
keybd_event

gdi32

CreateColorSpaceW
CreateDCA
CreateDiscardableBitmap
CreateHalftonePalette
CreateHatchBrush
CreatePolygonRgn
EndPage
ExtSelectClipRgn
GdiFlush
GetBitmapDimensionEx
GetCurrentPositionEx
GetDIBits
GetEnhMetaFileA
GetTextExtentPointA
PolyTextOutW
RealizePalette
RemoveFontResourceW
SaveDC
SetBkMode
SetBoundsRect
SetColorSpace
SetFontEnumeration
SetICMMode

Sections

.text
Size: 512B - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 225KB - Virtual size: 244KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 204KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

86e48c12c96a5ee16d064dea7dfe334d

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 16KB

.data Size: 225KB - Virtual size: 244KB

.rdata Size: - Virtual size: 8KB

.rsrc Size: 1024B - Virtual size: 204KB

.text
Size: 512B - Virtual size: 16KB

.data
Size: 225KB - Virtual size: 244KB

.rdata
Size: - Virtual size: 8KB

.rsrc
Size: 1024B - Virtual size: 204KB