efa6c1ccf0ab4982a0bab405d527f910_JaffaCakes118

General

Target

efa6c1ccf0ab4982a0bab405d527f910_JaffaCakes118
Size

210KB
MD5

efa6c1ccf0ab4982a0bab405d527f910
SHA1

35184d53c9347a5b063d72b5b1dedd10e11b9cc8
SHA256

ac106c259b3c8d46124f0eb51dfb2399c52c8d9991b637b7de86410ed057bcbf
SHA512

692a6089b5c05963023e124d467526766290ff9c64416412680dfd43e603c91211500cace3152461ff102290f24c3d213d7b6297dea0d5e2069c63d3626fea10
SSDEEP

3072:lYYlNVWsHcvDs6MoUecY5EPcuH5cHVL0HoPIJjq3s74cMKTRjFH8CIjTFqe:lHEvpUeJEPE1zse877ZFH8CWTN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
efa6c1ccf0ab4982a0bab405d527f910_JaffaCakes118

Files

efa6c1ccf0ab4982a0bab405d527f910_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6a783a656053f5d2cd325b2d6b386212

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

AdjustWindowRectEx
CreatePopupMenu
DeleteMenu
DrawIconEx
DrawMenuBar
FindWindowA
GetCapture
GetForegroundWindow
GetMenu
GetMenuStringA
GetScrollRange
GetSystemMenu
GetWindowThreadProcessId
IntersectRect
IsIconic
IsWindowVisible
MessageBeep
SendMessageA
SetCursor
SetForegroundWindow
SetTimer
SetWindowPos
SetWindowTextA
ShowCursor
SystemParametersInfoA
TranslateMessage
UnhookWindowsHookEx
WindowFromPoint

kernel32

GetFileSize
GetLocaleInfoA
IsBadReadPtr
LoadLibraryW
LocalFree
SetThreadPriority
UnmapViewOfFile
VirtualFree
VirtualProtect
lstrcpynA

gdi32

CreateRectRgnIndirect
EnumEnhMetaFile
EnumMetaFile
GetCharWidthW
GetEnhMetaFileDescriptionA
GetEnhMetaFileHeader
Polygon
SelectClipRgn
SelectPalette
SetStretchBltMode
SetWindowOrgEx

Sections

.text
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 99KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

DbOKmH3N
Size: 2KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

6a783a656053f5d2cd325b2d6b386212

Headers

File Characteristics

Imports

user32

kernel32

gdi32

Sections

.text Size: 88KB - Virtual size: 88KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 99KB - Virtual size: 98KB

.rsrc Size: 18KB - Virtual size: 17KB

DbOKmH3N Size: 2KB - Virtual size: 120KB

.text
Size: 88KB - Virtual size: 88KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 99KB - Virtual size: 98KB

.rsrc
Size: 18KB - Virtual size: 17KB

DbOKmH3N
Size: 2KB - Virtual size: 120KB