f617fca4da5e47ed0cad8b339b97a423_JaffaCakes118

General

Target

f617fca4da5e47ed0cad8b339b97a423_JaffaCakes118
Size

10KB
MD5

f617fca4da5e47ed0cad8b339b97a423
SHA1

20c7630285242b9f55981cea9a093fc1c983776a
SHA256

151a0a0272bcd38aa5e58bcddf2a2402b1b66f8e87ea927da2a27262422f57dd
SHA512

8758fc7a33032c63897f98713f94684c3a8796c8042dafb55d0f236472355ab36ae7d6fdd8221cf3111b1e662dde531d5998b58809f611314f857fa8a6156a86
SSDEEP

192:sL8UNLvCq8AkMMBt8UHou+k7MVj9xVzHYl2+iyemsCo:UpNv6ZMMl4B9xVshi3mk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f617fca4da5e47ed0cad8b339b97a423_JaffaCakes118

Files

f617fca4da5e47ed0cad8b339b97a423_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a45e881ae1a5dd6b78bfc0dfc8dc2f57

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BeginUpdateResourceA
ClearCommBreak
CreateEventW
DeleteFiber
ExitProcess
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetLargestConsoleWindowSize
GetModuleHandleW
GetPrivateProfileStringA
GetProcessWorkingSetSize
GetProfileSectionW
GlobalDeleteAtom
GlobalSize
HeapFree
ReadConsoleOutputW
ReleaseMutex
SetProcessAffinityMask
SuspendThread
SwitchToThread
UTRegister
WaitForMultipleObjects
WriteConsoleOutputAttribute
WriteFileGather
lstrcmpW

user32

BringWindowToTop
CascadeWindows
CharUpperBuffA
DdeCmpStringHandles
DdeNameService
DdeQueryNextServer
DialogBoxParamA
DrawCaptionTempW
DrawEdge
EnumDesktopWindows
GetCapture
GetKeyState
GetMessageA
GetUpdateRgn
IsCharAlphaNumericA
IsCharUpperW
LoadImageA
OemKeyScan
RegisterClassW
SetClassLongA
SetWindowsHookExW
UnhookWinEvent
UnpackDDElParam
VkKeyScanExW

gdi32

AbortPath
Arc
ChoosePixelFormat
ColorMatchToTarget
DeleteEnhMetaFile
DescribePixelFormat
EnableEUDC
EnumFontFamiliesA
ExtSelectClipRgn
GdiGetBatchLimit
GdiPlayJournal
GetCharacterPlacementW
GetColorSpace
GetDeviceCaps
GetPixel
GetRgnBox
GetViewportExtEx
IntersectClipRect
PathToRegion
PolyTextOutA
SetBitmapDimensionEx
SetICMMode
SetMagicColors
SetPolyFillMode

Sections

.text
Size: 512B - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a45e881ae1a5dd6b78bfc0dfc8dc2f57

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 20KB

.data Size: 8KB - Virtual size: 12KB

.rdata Size: - Virtual size: 16KB

.rsrc Size: - Virtual size: 4KB

.text
Size: 512B - Virtual size: 20KB

.data
Size: 8KB - Virtual size: 12KB

.rdata
Size: - Virtual size: 16KB

.rsrc
Size: - Virtual size: 4KB