f6c0c4596f317babf64bca7942cfd541_JaffaCakes118

General

Target

f6c0c4596f317babf64bca7942cfd541_JaffaCakes118
Size

41KB
MD5

f6c0c4596f317babf64bca7942cfd541
SHA1

8f1f7fdabb4b7874693382a0cdc40a9fc68dd050
SHA256

edbf38dcb18e0c8778a9b121f1ab801c94f609f73f3c1d0e0fac8cd1c6c8a13b
SHA512

85274d19eb3856ec03c53a60b9ec6363c81d6ffab493c03ae82d81c6f9778770066f8eef2e7d8e0dc3a250d57a7fe592c40ba7b60544d875a64d5921f862f166
SSDEEP

768:kUOCpv5WSOnclLFc8FwkmObKEj2kthuohBZBsCxKz:xkS0clLFcrkmdS2kt4ohB4C

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f6c0c4596f317babf64bca7942cfd541_JaffaCakes118

Files

f6c0c4596f317babf64bca7942cfd541_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a50c68cf3086260198a33a3665e71a8c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CommConfigDialogA
CopyFileA
DefineDosDeviceA
EnumResourceNamesW
EnumSystemLocalesW
ExitProcess
FindNextFileW
GetCommandLineW
GetConsoleCP
GetEnvironmentStrings
GetFileAttributesExA
GlobalFindAtomA
GlobalFix
Heap32Next
IsValidLocale
MoveFileA
RaiseException
SetFileAttributesA
SetProcessPriorityBoost
SetThreadIdealProcessor
SleepEx
UnlockFileEx
WaitNamedPipeA
WriteProfileSectionW

user32

AnyPopup
CheckMenuItem
DdeGetData
DialogBoxParamA
DrawTextExA
DrawTextW
EnumDesktopWindows
FindWindowExA
GetGuiResources
GetMenuItemInfoA
GetWindow
GetWindowRgn
InvertRect
IsCharAlphaNumericW
MapVirtualKeyA
ModifyMenuW
OpenInputDesktop
RemoveMenu
SendNotifyMessageW
SetTimer
ToAscii
TrackPopupMenu
UnhookWindowsHook

gdi32

CopyEnhMetaFileA
CreateBrushIndirect
CreatePatternBrush
DeviceCapabilitiesExW
FrameRgn
GdiGetBatchLimit
GetDCOrgEx
GetEnhMetaFilePaletteEntries
GetKerningPairs
GetKerningPairsA
GetMapMode
GetStockObject
GetTextMetricsA
LineTo
PolyBezier
SetAbortProc
SetMiterLimit
SetViewportExtEx
SetViewportOrgEx
TranslateCharsetInfo
UpdateColors

Sections

.text
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a50c68cf3086260198a33a3665e71a8c

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 8KB

.data Size: 40KB - Virtual size: 60KB

.rdata Size: - Virtual size: 4KB

.rsrc Size: - Virtual size: 8KB

.text
Size: 512B - Virtual size: 8KB

.data
Size: 40KB - Virtual size: 60KB

.rdata
Size: - Virtual size: 4KB

.rsrc
Size: - Virtual size: 8KB