d3c00c768cd646c7243c26721b95b056_JaffaCakes118

General

Target

d3c00c768cd646c7243c26721b95b056_JaffaCakes118
Size

4.6MB
MD5

d3c00c768cd646c7243c26721b95b056
SHA1

7e41dbe71d66f83c8358461d394da3475a4fddcc
SHA256

41089cba1b6b60c8dc33512406cc6fd85eba5cc3c332fd6b1e33de19d1a13c73
SHA512

df2247813776d42b1baee0db89c728b256053cc9c84fe994ad0006ffde9d1484d03b98895da4b524cdf5e4e9df83f01acc92fc73712a9a3931d0935c892f161b
SSDEEP

98304:FyMGrda6+AUodP8OYDnbSRruLAeGbY6dp9em1OMFy42:fZ6vdPoDn+RrJeKp4mIt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d3c00c768cd646c7243c26721b95b056_JaffaCakes118

Files

d3c00c768cd646c7243c26721b95b056_JaffaCakes118
.exe windows:5 windows x86 arch:x86

341a19afa14fe172a7793222aa7c05a0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTimeFormatA
SetFileAttributesA
RegisterWaitForSingleObject
ResumeThread
FindFirstVolumeMountPointA
MultiByteToWideChar
SetFileTime
DeleteTimerQueueEx
TerminateThread
EnumUILanguagesA
GetCPInfoExA
WriteConsoleOutputCharacterA
ReadConsoleOutputA
TerminateJobObject
OpenSemaphoreA
VirtualProtectEx
OpenEventA
GlobalUnfix
ReadFileEx
WaitForDebugEvent
VirtualAlloc
WritePrivateProfileStructA
GetEnvironmentStringsA
GetConsoleTitleA
GetThreadLocale
SetHandleCount
FlushViewOfFile
GetConsoleMode
FatalExit
GlobalWire
EnumResourceNamesA
GetUserGeoID
Thread32First
LZCopy
GetDllDirectoryA
SetLocalTime
GetSystemDirectoryA
SetLocalTime
GetUserDefaultLCID
GetFileSize
OpenSemaphoreA
GetFileAttributesExA
GetThreadPriority
SetPriorityClass
VirtualAlloc
UnregisterConsoleIME
CreateFileMappingA
LZCloseFile
LZSeek
UnlockFileEx
CreateWaitableTimerA
SetEnvironmentVariableA
LoadModule
GetFullPathNameA
GetFileAttributesExA

user32

GetMessageExtraInfo
TileChildWindows
PostThreadMessageA
EndTask
InsertMenuItemA
EnumDisplayDevicesA
SetForegroundWindow
GetReasonTitleFromReasonCode
GetClassInfoExA
EnumChildWindows
EndDeferWindowPos
GetDlgCtrlID
SetClassLongA
DefWindowProcA
PrivateExtractIconExA
SetMenu
GetAltTabInfoA
OemToCharA
GetClassInfoExA
GetKeyState
PeekMessageA
GetKeyNameTextA
DestroyAcceleratorTable
DdeGetLastError
SendNotifyMessageA
QuerySendMessage
CreateDialogParamA
GetInternalWindowPos
GetUpdateRgn
GetMenuItemInfoA
IsCharLowerA
EnumPropsExW
SetMessageQueue
DlgDirSelectExA
GetIconInfo
CopyAcceleratorTableA
PostThreadMessageA
PostMessageA
GetDialogBaseUnits
CharUpperA
DdeImpersonateClient
DlgDirSelectComboBoxExA
MonitorFromWindow
ClientThreadSetup
SetCursorContents
EmptyClipboard
GetFocus
SetWindowTextA
RegisterHotKey
GetMenuItemID
DefWindowProcA
GetIconInfo
GetClipboardViewer
LoadStringA
BroadcastSystemMessageExA
GetAncestor

Sections

.rdata
Size: 4.4MB - Virtual size: 7.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 230KB - Virtual size: 232KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

341a19afa14fe172a7793222aa7c05a0

Headers

File Characteristics

Imports

kernel32

user32

Sections

.rdata Size: 4.4MB - Virtual size: 7.6MB

.rsrc Size: 230KB - Virtual size: 232KB

.rdata
Size: 4.4MB - Virtual size: 7.6MB

.rsrc
Size: 230KB - Virtual size: 232KB