f070b73a63f16677e640e285a1e5f4dc_JaffaCakes118

General

Target

f070b73a63f16677e640e285a1e5f4dc_JaffaCakes118
Size

272KB
MD5

f070b73a63f16677e640e285a1e5f4dc
SHA1

42c9127cfc4365d0436fa9ac2c41e6f86f638514
SHA256

e2d8ea5a57257b94f7d0d1e442a030b442847144d68433e6c035e6f981beb175
SHA512

ed6dc9f82de628623b54a66d01e62484b097d0ff5a41af5e5fe2b4bb0d257f7fb79df53178d4de9e8c5e5f6638029068956460eb08019df1fc8e37294eec2933
SSDEEP

6144:hfeFzM71oAy4JiP6BnWraDykaqZcFZnTmuqRliaOuyfD:4JW1oAiP6BsaDGRFRm7iaOu2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f070b73a63f16677e640e285a1e5f4dc_JaffaCakes118

Files

f070b73a63f16677e640e285a1e5f4dc_JaffaCakes118
.exe windows:4 windows x86 arch:x86

cd5e093ef6c3bb382dd2f408be53b51e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

BackupWrite
BuildCommDCBAndTimeoutsA
CloseHandle
CreateNamedPipeA
CreateSemaphoreA
EnumSystemCodePagesA
ExitProcess
GetConsoleCP
GetConsoleScreenBufferInfo
GetConsoleTitleA
GetCurrencyFormatA
GetFileSize
GetFullPathNameA
GetOEMCP
GetPrivateProfileStringW
GetProfileStringA
GetThreadTimes
GetTimeFormatW
GlobalFlags
InterlockedDecrement
LocalAlloc
SetComputerNameW
SetLocaleInfoW
SleepEx
lstrcmpiW

user32

AttachThreadInput
CharUpperW
CheckDlgButton
DdeDisconnectList
DdeEnableCallback
DdeGetLastError
DdeUninitialize
DispatchMessageA
EndMenu
GetInputState
GetWindowWord
IntersectRect
IsDialogMessageW
MonitorFromWindow
MsgWaitForMultipleObjects
SetCaretPos
SetClassWord
SetCursorPos
TranslateAccelerator
UnionRect
UnlockWindowStation

gdi32

CancelDC
CreateColorSpaceA
DeviceCapabilitiesExA
ExtTextOutW
GetBrushOrgEx
GetCharABCWidthsFloatA
GetICMProfileW
GetRegionData
GetTextCharacterExtra
GetTextCharsetInfo
PaintRgn
Pie
RealizePalette
RectVisible
SetAbortProc
SetBrushOrgEx
SetPixelFormat
SetSystemPaletteUse
StretchBlt
WidenPath

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 268KB - Virtual size: 284KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 516KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cd5e093ef6c3bb382dd2f408be53b51e

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 4KB

.data Size: 268KB - Virtual size: 284KB

.rsrc Size: 2KB - Virtual size: 516KB

.text
Size: 512B - Virtual size: 4KB

.data
Size: 268KB - Virtual size: 284KB

.rsrc
Size: 2KB - Virtual size: 516KB