db44df53b8bd4acef60063f8148e7a29_JaffaCakes118

General

Target

db44df53b8bd4acef60063f8148e7a29_JaffaCakes118
Size

225KB
MD5

db44df53b8bd4acef60063f8148e7a29
SHA1

cc3968fc4fdfcb3b4994e990d1ea17c170ade60d
SHA256

2bfcbcdaf60f126b92cc4eb766c809b0f3628672f84a88b1be1b144c21a4ee32
SHA512

ad93ee69b1bd8408e2b6abbbc634ae6a74be0c2a74b48bb2b7b5065bb7c83ffca403639859dec90e4f2afbd8aa2ef4f918b9de8f2b37f9c976caa931ff63b6a8
SSDEEP

6144:lLoltQ0HpoWJr/RxxzIJqaApQw2wX9+ALn8Rk:xonQ0JDr5Hshw29ALGk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
db44df53b8bd4acef60063f8148e7a29_JaffaCakes118

Files

db44df53b8bd4acef60063f8148e7a29_JaffaCakes118
.exe windows:4 windows x86 arch:x86

fbfd6de93f8d671e17f455e5e4b8368a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

CreateEventW
CreateNamedPipeW
DeleteFileW
EndUpdateResourceA
EnumCalendarInfoW
EnumResourceLanguagesW
ExitProcess
FreeEnvironmentStringsW
GetCommandLineA
GetFileAttributesExW
GetLocaleInfoW
GetModuleFileNameA
GetProcessHeap
GetProfileIntW
GetSystemTimeAdjustment
GetTempFileNameW
GetThreadLocale
GetVersionExW
HeapWalk
Module32First
PostQueuedCompletionStatus
SetCommState
SetDefaultCommConfigA
SetProcessWorkingSetSize
SetUnhandledExceptionFilter
TerminateThread
UnmapViewOfFile
WriteProfileStringA

user32

AppendMenuA
ChangeMenuW
CheckMenuRadioItem
CreateDialogIndirectParamA
CreateIcon
DdeCmpStringHandles
DestroyAcceleratorTable
GetClassLongA
GetDlgCtrlID
GetGUIThreadInfo
GetListBoxInfo
GetTopWindow
GetWindowPlacement
IsMenu
LookupIconIdFromDirectoryEx
OemToCharBuffA
SendIMEMessageExA
SetMessageQueue
ToAsciiEx
UnregisterClassW
WINNLSGetIMEHotkey

gdi32

CancelDC
CreateDCW
CreateICW
CreatePalette
CreatePen
DeleteDC
DeleteObject
ExcludeClipRect
GdiPlayJournal
GetBrushOrgEx
GetColorAdjustment
GetDIBColorTable
GetEnhMetaFileDescriptionA
GetRandomRgn
GetTextFaceW
GetViewportExtEx
Pie
PlayEnhMetaFile
RemoveFontResourceA
RoundRect
SelectClipPath
SetArcDirection
SetBoundsRect
SetColorSpace
SetPaletteEntries
StartDocA
StrokePath
TextOutA

Sections

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 223KB - Virtual size: 240KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 220KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fbfd6de93f8d671e17f455e5e4b8368a

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

Size: 512B - Virtual size: 4KB

.data Size: 223KB - Virtual size: 240KB

.rsrc Size: 1024B - Virtual size: 220KB

.data
Size: 223KB - Virtual size: 240KB

.rsrc
Size: 1024B - Virtual size: 220KB