dc449bbb7f6af16af14b1033609ed2f7_JaffaCakes118

General

Target

dc449bbb7f6af16af14b1033609ed2f7_JaffaCakes118
Size

39KB
MD5

dc449bbb7f6af16af14b1033609ed2f7
SHA1

c526c79d546e09a8b42f4ae6687fa02d0d188cb1
SHA256

2706822f2f8e6b01c7370610633657a8ce16dcb919cc7657d09beb7e66c60847
SHA512

c8b28a289d7732e9d13f890b8987c89a72b8669695c9ececc29d775cee8f13fd8d3fb5814e73d14627013468e7f60a390aee9dc8e0a1ad7d189e64f7ce65ee9c
SSDEEP

768:FWYL1JijTp0XJZpQIZ12lKOCdsbRxkXGVMBWeqZ2wIp8TH2:4Yx2+QIZQ7bR1MceurQq2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dc449bbb7f6af16af14b1033609ed2f7_JaffaCakes118

Files

dc449bbb7f6af16af14b1033609ed2f7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

73526fa0da6aa5977cb62c91daa10eb7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

AddAtomW
CopyFileExW
CreateDirectoryExA
CreateMailslotW
DebugActiveProcess
EnumResourceNamesA
ExitProcess
GetCommTimeouts
GetFileAttributesW
GetProfileIntW
GetStartupInfoW
GetStdHandle
GetTempFileNameA
GetTempPathW
GetTimeFormatA
GetUserDefaultLangID
GlobalHandle
HeapSize
LoadModule
MultiByteToWideChar
SetMailslotInfo
SetProcessAffinityMask
TlsSetValue
UTRegister
UnlockFileEx
WideCharToMultiByte
WritePrivateProfileStructW
WriteProfileStringW

user32

CharUpperBuffW
CheckMenuRadioItem
CloseClipboard
CreateMDIWindowW
DestroyAcceleratorTable
EnableMenuItem
EnumPropsExA
GetDlgItemTextA
GetQueueStatus
GetScrollBarInfo
GetUserObjectSecurity
InSendMessage
InsertMenuItemW
LookupIconIdFromDirectoryEx
ModifyMenuA
OpenDesktopW
PtInRect
RegisterClassA
SendDlgItemMessageA
SetCursorPos
SetMenuItemInfoW

gdi32

AnimatePalette
CopyEnhMetaFileW
CreateBrushIndirect
CreateScalableFontResourceW
DeleteMetaFile
DeleteObject
GetBkColor
GetCurrentPositionEx
GetDIBits
GetMetaFileW
GetPath
GetSystemPaletteUse
GetTextExtentExPointW
LPtoDP
MoveToEx
PolyDraw
PolylineTo
PtInRegion
SetDIBColorTable
SetDIBitsToDevice
SetEnhMetaFileBits
SetMapperFlags
TranslateCharsetInfo

Sections

.text
Size: 512B - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 38KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

73526fa0da6aa5977cb62c91daa10eb7

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 12KB

.data Size: 38KB - Virtual size: 40KB

.idata Size: - Virtual size: 16KB

.rsrc Size: - Virtual size: 8KB

.text
Size: 512B - Virtual size: 12KB

.data
Size: 38KB - Virtual size: 40KB

.idata
Size: - Virtual size: 16KB

.rsrc
Size: - Virtual size: 8KB