f603441e29d3040de6236dc655b0a369_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f603441e29d3040de6236dc655b0a369_JaffaCakes118
Size

41KB
MD5

f603441e29d3040de6236dc655b0a369
SHA1

c59b2e1494c2fedb68769a891ae4e84131ef7ff7
SHA256

f189aa97f96a86e2a094ff734b5f904e03e1d8f9559215f33ca0d87a04b2b299
SHA512

a538ef49f69cd0c989372b29d42b2a5ff2a8437f85c5eaf3ed0d61b354cf5d4d57a329d051775ca8752cde5e8d9d6ec9e76f2a87826c6e859433f73367c65de1
SSDEEP

768:tYGprlU3sjJO7VrW0Dkb+HBgS8ult4VLV005o94AD2ZkUY09R:mWYHk+fqhLyKZkUYA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f603441e29d3040de6236dc655b0a369_JaffaCakes118

Files

f603441e29d3040de6236dc655b0a369_JaffaCakes118
.exe windows:4 windows x86 arch:x86

dd7fb8f6c4a168712aa5f22239ca17c0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VerifyConsoleIoHandle
VirtualProtect
SetConsoleTitleW
Sleep
GetVersion
lstrcpy
RtlZeroMemory
TerminateJobObject
ReadConsoleInputA
GetEnvironmentVariableW
_llseek
SetConsoleOutputCP
GetLastError
GetConsoleFontSize
OpenWaitableTimerW
GlobalReAlloc
GetComputerNameA
UnlockFileEx
GetConsoleInputWaitHandle
SetHandleCount
BeginUpdateResourceA
_hread
GetThreadPriority
ReleaseMutex
GetModuleFileNameW
SetTimeZoneInformation
ContinueDebugEvent
FillConsoleOutputAttribute
QueueUserAPC
GetCPInfo

user32

RegisterSystemThread
GetUpdateRect
DdeConnect
OemToCharA
GetUserObjectInformationA
GrayStringW
RegisterServicesProcess
GetDlgCtrlID
MsgWaitForMultipleObjectsEx
RegisterDeviceNotificationW
ShowWindowAsync
CreateDialogParamA
SetCursor
GetTopWindow
LoadMenuIndirectW
BroadcastSystemMessageA
ChangeClipboardChain
MoveWindow
SetWindowStationUser
PeekMessageA
IsCharAlphaW
DrawFocusRect
CreateAcceleratorTableA
EnumDisplayDevicesA
EndDeferWindowPos
SetMenuContextHelpId
SetWindowPlacement
ClientToScreen
WindowFromPoint
SetClassWord
SetWindowPos
GetDialogBaseUnits
PrivateExtractIconsA
MapVirtualKeyExW
DrawMenuBarTemp

gdi32

SetICMMode
GetArcDirection
CopyMetaFileW
FixBrushOrgEx
GdiDeleteSpoolFileHandle
EngFillPath
GdiGetDC
GdiConvertBitmapV5
Rectangle
GdiEntry10

comdlg32

GetSaveFileNameW
CommDlgExtendedError
Ssync_ANSI_UNICODE_Struct_For_WOW
PrintDlgExW
ChooseFontA
GetFileTitleW
PrintDlgA
FindTextW
dwLBSubclass
PageSetupDlgA
ReplaceTextA
ChooseColorA

Sections

.text
Size: 4KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 33KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

dd7fb8f6c4a168712aa5f22239ca17c0

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

Sections

.text Size: 4KB - Virtual size: 40KB

.data Size: 33KB - Virtual size: 36KB

.idata Size: 3KB - Virtual size: 4KB

.text
Size: 4KB - Virtual size: 40KB

.data
Size: 33KB - Virtual size: 36KB

.idata
Size: 3KB - Virtual size: 4KB