faaa55ef1285dc97c849b45de3561c25_JaffaCakes118

General

Target

faaa55ef1285dc97c849b45de3561c25_JaffaCakes118
Size

88KB
MD5

faaa55ef1285dc97c849b45de3561c25
SHA1

79ce6185be2d1d78612a1968987f4af73f566f44
SHA256

66f4dd34eefedc7d29b585e619ffa0b10df7ddfe189cbe6f53972581f784aa40
SHA512

7cd1cadfb8a296f712e3122d4656a0469fc258b8b495a107b97ab642a38d5bb92e7943733b1360a3f5c1b3876b42bb0935a082d637d226a602f2451f36e4bb6c
SSDEEP

1536:N6FnCV85E5WN7LGwprozP6qTXe8lALvHwrzzJZhU8yMiaP+eXkLfDb91JtfqlJ1x:N6FkSEQ7LGwpOP6qKLuzhUPLr/i1v6tG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
faaa55ef1285dc97c849b45de3561c25_JaffaCakes118

Files

faaa55ef1285dc97c849b45de3561c25_JaffaCakes118
.exe windows:1 windows x86 arch:x86

669234cb47ea9bf43995f71ee0523f19

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileType
GetProcessAffinityMask
UnhandledExceptionFilter
FindClose
GetCommandLineW
MulDiv
QueryPerformanceFrequency
LoadLibraryW
PulseEvent
EnterCriticalSection
ReadFile
SetPriorityClass
lstrcatA
FreeEnvironmentStringsA
CloseHandle
GetStdHandle
IsValidCodePage
SetHandleCount
GetExitCodeThread
FileTimeToSystemTime
CreateThread
MultiByteToWideChar
GetStartupInfoA
LoadResource
SearchPathA
GetModuleHandleA
SetEnvironmentVariableA
DeleteFileA

user32

SetDlgItemTextA
DestroyIcon
MessageBoxA
KillTimer
RegisterClassA
PeekMessageA
CheckMenuRadioItem
IsDialogMessageA
GetWindowPlacement
SetScrollInfo
DestroyWindow
FrameRect
SetWindowPlacement
CopyRect
GetDlgItemTextA
SendMessageTimeoutA
RedrawWindow
GetWindowDC
AppendMenuA
CallWindowProcA
GetWindowTextA
EnumChildWindows
SetTimer
GetDoubleClickTime
GetDlgItem

gdi32

DeleteObject
Rectangle
StartPage
BitBlt
CreateCompatibleDC
SaveDC
CreateRectRgn
GetTextExtentPoint32A
GetDeviceCaps
CreatePen
RestoreDC
SelectObject
DeleteDC
GetBkColor
CreateSolidBrush
GetStockObject
CreateCompatibleBitmap
CreateRectRgnIndirect

msvcrt

__set_app_type
_acmdln
_except_handler3
_adjust_fdiv
__p__commode
_controlfp
_exit
__getmainargs
exit
memcpy
_XcptFilter
__setusermatherr
_initterm
__p__fmode

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

669234cb47ea9bf43995f71ee0523f19

Headers

File Characteristics

Imports

kernel32

user32

gdi32

msvcrt

Sections

.text Size: 20KB - Virtual size: 19KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 8KB - Virtual size: 84KB

.rsrc Size: 56KB - Virtual size: 56KB

.text
Size: 20KB - Virtual size: 19KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 8KB - Virtual size: 84KB

.rsrc
Size: 56KB - Virtual size: 56KB