f9de79981d37115a7c01097bedbcca0b_JaffaCakes118

General

Target

f9de79981d37115a7c01097bedbcca0b_JaffaCakes118
Size

43KB
MD5

f9de79981d37115a7c01097bedbcca0b
SHA1

a043563f742471f058e4bb9a893ffe576f29bb9a
SHA256

a2c76e7329cc3fc7999ca73f50121e541db036bdfbd1d258d170b8e62a1a0191
SHA512

4d6c7a7c8f8688d58479d79a14c97c4ee8d5be0f9de41682d844299f0d80e597cb4a50bbd8161c29e86de97c1f872e073c35fb27d6dc8791660ef8d34ed2acd5
SSDEEP

768:telUHrR6gRKNMSJIxsLRROpFc8L55KsbL1s++u+Q2xDDJ71/iV:teyIgouSJIgw7L5Q8+u+5lH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f9de79981d37115a7c01097bedbcca0b_JaffaCakes118

Files

f9de79981d37115a7c01097bedbcca0b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

fdfa07bdbdb2f261800efd8ed7de838a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

AddAtomA
CancelDeviceWakeupRequest
CreateFileMappingA
CreateFileMappingW
CreateSemaphoreW
ExitProcess
GetBinaryTypeW
GetConsoleMode
GetDiskFreeSpaceA
GetDriveTypeW
GetNumberOfConsoleMouseButtons
GetPrivateProfileStringW
GetProfileIntW
IsDebuggerPresent
LCMapStringW
ReadFileScatter
SetCommState
SetFileApisToOEM
SetFileTime
SetVolumeLabelW
Thread32First
TryEnterCriticalSection
UnmapViewOfFile
WaitNamedPipeA
WriteProfileStringW
lstrlenW

user32

CallMsgFilterW
ClipCursor
CopyAcceleratorTableW
CreateDialogParamW
DdeDisconnect
DlgDirSelectExA
DrawTextW
EnableScrollBar
GetActiveWindow
GetGUIThreadInfo
GetMenuInfo
GetMenuStringW
GetProcessDefaultLayout
GetWindowRgn
HideCaret
IsZoomed
OpenWindowStationA
ScreenToClient
SendMessageTimeoutA
SetDlgItemInt
ToUnicodeEx
UnlockWindowStation
WINNLSGetIMEHotkey

gdi32

AbortPath
Chord
CreateBitmap
CreateColorSpaceW
CreateDCA
EnumFontsW
EnumObjects
ExcludeClipRect
ExtTextOutW
GetAspectRatioFilterEx
GetCharABCWidthsA
GetCharWidth32A
GetClipRgn
GetGlyphOutlineW
GetSystemPaletteEntries
GetWindowExtEx
MaskBlt
PolyPolyline
PolylineTo
RectInRegion
RemoveFontResourceA
SetColorAdjustment
SetPixel
SetPixelFormat
SetPixelV

Sections

.text
Size: 512B - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 41KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fdfa07bdbdb2f261800efd8ed7de838a

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 12KB

.data Size: 41KB - Virtual size: 60KB

.rdata Size: - Virtual size: 12KB

.rsrc Size: - Virtual size: 8KB

.text
Size: 512B - Virtual size: 12KB

.data
Size: 41KB - Virtual size: 60KB

.rdata
Size: - Virtual size: 12KB

.rsrc
Size: - Virtual size: 8KB