da65581bf58d8104c1a09af8c6264f62_JaffaCakes118

General

Target

da65581bf58d8104c1a09af8c6264f62_JaffaCakes118
Size

43KB
MD5

da65581bf58d8104c1a09af8c6264f62
SHA1

801a8df161bbeb42846c81a5d24b08e3e6e85fba
SHA256

700bb338ef7b0403acfbc4e533258b4450be6391acfd8eeeffede8cda3681d45
SHA512

93dba0406bcc7f9c13ddbd40c5274c63779a0c47eaf2f646ef8836069195dd2b446cedbfd54196ebd6d2414d748627a7b4f74aaca0e9be2aa4c1428e41d348fe
SSDEEP

768:0+1PNAymFrY8f7dq/G3utf14Pv2+7r5IO93uFW3ca7kgI+gKc+uZp0Knw5/zwo3:3L7mFn7dwG+t94PVl5eW3kgIzpZp035t

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
da65581bf58d8104c1a09af8c6264f62_JaffaCakes118

Files

da65581bf58d8104c1a09af8c6264f62_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b37388bd327187538e5c89783877d5cd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

AllocConsole
CompareStringA
CreateToolhelp32Snapshot
ExitProcess
FindFirstFileExW
GetPrivateProfileIntW
GetStdHandle
GetTimeZoneInformation
IsValidCodePage
Module32Next
MoveFileExA
ReadConsoleInputA
RtlFillMemory
SetConsoleOutputCP
SetConsoleTextAttribute
SetConsoleTitleA
SetEnvironmentVariableA
TransmitCommChar
lstrcatW
lstrlen

user32

CascadeWindows
ChildWindowFromPoint
CloseClipboard
CreatePopupMenu
DdeConnect
DrawStateW
EnumDisplaySettingsExA
EnumWindowStationsW
GetClassInfoExW
GetClipboardFormatNameA
GetKBCodePage
GetKeyboardLayoutNameA
GetLastActivePopup
GetMenuStringA
GetPriorityClipboardFormat
GetWindowLongW
IsCharUpperW
MsgWaitForMultipleObjectsEx
OemToCharA
OemToCharBuffW
RegisterClassExA
SendNotifyMessageW
SetMenuInfo
SubtractRect
TranslateAcceleratorA
UnhookWindowsHook
WINNLSGetEnableStatus
WaitMessage

gdi32

AngleArc
CloseEnhMetaFile
ColorMatchToTarget
CreateCompatibleDC
CreateDCA
CreateDIBSection
CreateEllipticRgn
CreatePen
EnumEnhMetaFile
EnumFontFamiliesExA
ExtTextOutA
GdiComment
GetBitmapBits
GetBrushOrgEx
GetCharWidth32W
GetTextExtentPoint32A
GetWindowOrgEx
PlgBlt
SaveDC
SetICMProfileA
SetPixelV
UnrealizeObject
WidenPath

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 42KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xdata
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b37388bd327187538e5c89783877d5cd

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 4KB

.data Size: 42KB - Virtual size: 60KB

.xdata Size: - Virtual size: 12KB

.rsrc Size: - Virtual size: 4KB

.text
Size: 512B - Virtual size: 4KB

.data
Size: 42KB - Virtual size: 60KB

.xdata
Size: - Virtual size: 12KB

.rsrc
Size: - Virtual size: 4KB