dac1e78bf936b90271a625da523ef643_JaffaCakes118

General

Target

dac1e78bf936b90271a625da523ef643_JaffaCakes118
Size

182KB
MD5

dac1e78bf936b90271a625da523ef643
SHA1

f4919afd029fa216e4c77d79dfd652b1c6b91ee7
SHA256

f9595d55760c354c2121b28b42858c2fdab18079d9692259df78fd4668885fa9
SHA512

f367a3e7e0dc5c9d4fa83a75debf830b32e9a8f7c7c6cb011029c9757c08273807454843d34be08316f36368704f1fd6c7fb63eb4947e0e78ebfeab23b3e2985
SSDEEP

3072:fR+lZssR9arwFA4Fzr22D8sIPKKMpLkYFN4+J6fjOkWu:EXKrwF9zrJD8sk7MdNJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dac1e78bf936b90271a625da523ef643_JaffaCakes118

Files

dac1e78bf936b90271a625da523ef643_JaffaCakes118
.exe windows:4 windows x86 arch:x86

997dd67486a5f03907b040e72e389de8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetConsoleWindow
SwitchToThread
GetPrivateProfileStructA
GetBinaryType
GetNamedPipeHandleStateA
OpenFileMappingW
WideCharToMultiByte
MoveFileW
LocalFree
IsBadHugeWritePtr
SetTapeParameters
DeleteFileW
GetCommandLineA
ExitProcess
GetStartupInfoA

user32

MessageBoxIndirectW
SetThreadDesktop
LoadLocalFonts
GetShellWindow
GetKeyNameTextW
RegisterTasklist
GetNextDlgTabItem
PaintDesktop
ChangeDisplaySettingsW
GetLastInputInfo

shell32

Shell_NotifyIcon
SHAppBarMessage
SHQueryRecycleBinA
ExtractAssociatedIconExW

gdi32

GetCharABCWidthsFloatA
SetPaletteEntries
PathToRegion
FixBrushOrgEx
CreatePatternBrush
BRUSHOBJ_hGetColorTransform
SetDIBitsToDevice
PATHOBJ_bEnum
AddFontResourceA
CLIPOBJ_ppoGetPath
QueryFontAssocStatus

Sections

.text
Size: 5KB - Virtual size: 808KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 173KB - Virtual size: 175KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

997dd67486a5f03907b040e72e389de8

Headers

File Characteristics

Imports

kernel32

user32

shell32

gdi32

Sections

.text Size: 5KB - Virtual size: 808KB

.data Size: 173KB - Virtual size: 175KB

.rsrc Size: 512B - Virtual size: 4KB

.idata Size: 2KB - Virtual size: 1KB

.reloc Size: - Virtual size: 4KB

.text
Size: 5KB - Virtual size: 808KB

.data
Size: 173KB - Virtual size: 175KB

.rsrc
Size: 512B - Virtual size: 4KB

.idata
Size: 2KB - Virtual size: 1KB

.reloc
Size: - Virtual size: 4KB