f0ba467f6eafd29d1dd2e0b56568116a_JaffaCakes118

General

Target

f0ba467f6eafd29d1dd2e0b56568116a_JaffaCakes118
Size

10KB
MD5

f0ba467f6eafd29d1dd2e0b56568116a
SHA1

04cdcbfe3ea5f5ca08343760291b4611b317c790
SHA256

6980ae0a926e38f407e78c7ddf3ccab3bad157ec08c25b5c8c9c1d5cab7a6ea8
SHA512

891d77cf3546ad1aa6b7e649bfa4059cf1986e5046820f672b28e6fa872fd5465fa5c7d4f75e9d72337dc2abe4de156276dd0c10e921c39d7868753a0aaa4492
SSDEEP

192:toeYAHdr/M9LWgbdcp6YpF8GT3F4bEXL4t/BKuflLj+TV3mUuzx5vpM1AD8fifFC:tdVdr/M+p6u8Q4wXYZKudn+5mx5+1AQv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f0ba467f6eafd29d1dd2e0b56568116a_JaffaCakes118

Files

f0ba467f6eafd29d1dd2e0b56568116a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ea3c632ca81787f322295f85680c6f00

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BuildCommDCBAndTimeoutsA
CancelWaitableTimer
CompareStringW
ConvertThreadToFiber
EnumSystemLocalesA
EnumTimeFormatsW
ExitProcess
FormatMessageA
GetCalendarInfoW
GetCommandLineA
GetCompressedFileSizeW
GetCurrentThreadId
GetProcessHeap
GetStringTypeExW
GlobalDeleteAtom
GlobalUnWire
LocalAlloc
LocalLock
LocalUnlock
MoveFileA
QueryPerformanceFrequency
ReadConsoleA
RtlUnwind
SetConsoleTextAttribute
SetTapeParameters
SetThreadAffinityMask
VerLanguageNameW
lstrlen

user32

AppendMenuA
CharToOemA
CharUpperBuffW
DdeQueryStringA
DlgDirSelectExW
DrawTextExW
EnumClipboardFormats
GetClassInfoExW
GetClientRect
GetClipboardFormatNameW
GetCursorInfo
GetMenuCheckMarkDimensions
GetMenuItemID
GetUpdateRect
IsCharUpperA
KillTimer
LoadCursorFromFileA
LoadImageA
PostMessageA
RegisterClassA
ShowCaret
SwapMouseButton
SwitchToThisWindow
UnregisterClassA

gdi32

CloseFigure
CopyEnhMetaFileW
CreateDIBPatternBrush
CreateFontIndirectW
CreateHatchBrush
CreateRectRgnIndirect
EnumFontFamiliesExA
Escape
ExtEscape
FlattenPath
FloodFill
GetDIBColorTable
GetKerningPairs
GetMapMode
GetMetaFileBitsEx
GetMetaFileW
GetRandomRgn
Rectangle
SetArcDirection
SetBkColor
SetDeviceGammaRamp
SetROP2

Sections

.text
Size: 512B - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ea3c632ca81787f322295f85680c6f00

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 12KB

.data Size: 8KB - Virtual size: 24KB

.rdata Size: - Virtual size: 4KB

.rsrc Size: - Virtual size: 8KB

.text
Size: 512B - Virtual size: 12KB

.data
Size: 8KB - Virtual size: 24KB

.rdata
Size: - Virtual size: 4KB

.rsrc
Size: - Virtual size: 8KB