dece64b4ab75dd2bf8fbe900fbe0247b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

dece64b4ab75dd2bf8fbe900fbe0247b_JaffaCakes118
Size

64KB
MD5

dece64b4ab75dd2bf8fbe900fbe0247b
SHA1

8f9736f9433e879512dc44778a98b3ab9bd36912
SHA256

7c09d5008b84cc7a186eb62e142b0e643da03230c2cb87a65d8455f789de8e7a
SHA512

c881bf21e2b9c3152f72457173202995d1a3b738b1c19b22b83d20f45b97c8f3203607752c7dc4ffa471f025448e0396c2be80df5bc55c3ea230da67118e0234
SSDEEP

768:b805+OjyW3ROj90tzSn9Y6BRT4DLuxu0wtep+winPJm5CiiG:bR59jGj90eJBRYLuLnMzPJmoiiG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dece64b4ab75dd2bf8fbe900fbe0247b_JaffaCakes118

Files

dece64b4ab75dd2bf8fbe900fbe0247b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

367045a910ec2a87b8cb18f79b30bea0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
SetEvent
TransmitCommChar
VirtualAllocEx
SetSystemTime
GetCommModemStatus
GetPriorityClass
LCMapStringA
GetCommandLineA
GetPrivateProfileStringA
GetProfileSectionA
GetSystemDirectoryA
GetDllDirectoryA
VirtualFree
GetConsoleOutputCP
ProcessIdToSessionId
GetExitCodeProcess
VirtualProtect
GetSystemTime
GetCPInfo
GetDateFormatA
PeekConsoleInputA
DeleteTimerQueueTimer
FlushInstructionCache
MoveFileWithProgressA
GetStartupInfoA
GetConsoleCursorMode
GetVersionExA
ClearCommError
GetCurrentConsoleFont
Heap32ListNext
PulseEvent
GetThreadIOPendingFlag

user32

ActivateKeyboardLayout
CreateDesktopA
ExitWindowsEx
GetWindowTextLengthA
GetKeyNameTextA
OpenDesktopA
InSendMessageEx
SetClassWord
FlashWindow
SendMessageCallbackA
InsertMenuItemA
CheckMenuRadioItem
UnhookWindowsHookEx
DlgDirSelectComboBoxExA
EnumWindowStationsA
DlgDirSelectExA
ReplyMessage
IsServerSideWindow
CharLowerBuffW
InsertMenuItemA
SetClassLongA
GetScrollRange
GetTopWindow
CallWindowProcA
PostThreadMessageW
CharLowerA
EditWndProc
BringWindowToTop
GetCursor
GetMenuBarInfo
DrawMenuBarTemp
GetSubMenu
SetWindowsHookA
DialogBoxParamA
GetWindowTextA
PostQuitMessage
CliImmSetHotKey
UnregisterClassA
SetSystemMenu
CharPrevExA
EndTask
GetMenuBarInfo
PtInRect
GetInputDesktop
PostThreadMessageA
GetClassNameA
ScrollDC
CreateDialogIndirectParamA
GetDCEx
MessageBoxExA
LoadKeyboardLayoutA
SetWindowLongA
CreateCursor
EnumDisplayDevicesA
CharUpperBuffA
GetTaskmanWindow
SetDoubleClickTime
DeregisterShellHookWindow
DisableProcessWindowsGhosting
DestroyCursor

Sections

.data
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 52KB - Virtual size: 781KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

367045a910ec2a87b8cb18f79b30bea0

Headers

File Characteristics

Imports

kernel32

user32

Sections

.data Size: - Virtual size: 3KB

.text Size: 52KB - Virtual size: 781KB

.idata Size: 4KB - Virtual size: 2KB

.rsrc Size: 4KB - Virtual size: 1KB

.data
Size: - Virtual size: 3KB

.text
Size: 52KB - Virtual size: 781KB

.idata
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 4KB - Virtual size: 1KB