fb6169646d137671bb93a1144e9c25d3_JaffaCakes118

General

Target

fb6169646d137671bb93a1144e9c25d3_JaffaCakes118
Size

14KB
MD5

fb6169646d137671bb93a1144e9c25d3
SHA1

f4ad2fee574dd6a60f28b6a436323697ee9fbc46
SHA256

39e383f1882b1bd51673389150048b7ad7b6bc6f6b6d7d952ab389f641c823d7
SHA512

0f07586e9ae62d44a1ab9641dea008d3ce0850acc8a7372e884c5c4ea3340fcddd218ccf0e5fa7104a60c26c2372fea4ca24e262ea9876b36f48f33abcf79ec2
SSDEEP

192:NNUK/VzD/Vzk4NSNNTKgGytChCeyHsJDtkbWNmPFkpn7E:LUK/Vv/V4rtChCDHURfNC+pnY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fb6169646d137671bb93a1144e9c25d3_JaffaCakes118

Files

fb6169646d137671bb93a1144e9c25d3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7004667f659f5a5c25d110bd919fdfa8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

AddAtomA
BuildCommDCBAndTimeoutsA
ConvertDefaultLocale
CopyFileExA
CopyFileW
CreateDirectoryA
CreateDirectoryExW
CreateFileMappingA
DuplicateHandle
ExitProcess
GetCPInfo
GetCommMask
GetCommModemStatus
GetComputerNameA
GetDiskFreeSpaceExW
GetExitCodeProcess
GetFileAttributesW
GetLocalTime
GetLogicalDrives
GetNumberFormatA
GetProcessPriorityBoost
ScrollConsoleScreenBufferW
SetCommConfig
SetConsoleActiveScreenBuffer
SetConsoleCP
SetCurrentDirectoryA
SizeofResource
SystemTimeToFileTime

user32

CallNextHookEx
CharToOemW
ClipCursor
CreateCursor
DefFrameProcW
DialogBoxIndirectParamW
DragDetect
DrawEdge
EnableWindow
EndDeferWindowPos
EndTask
FindWindowW
GetClassLongW
GetMonitorInfoW
GetWindowWord
IsCharAlphaA
MenuItemFromPoint
OpenWindowStationW
RemovePropA
SendMessageCallbackA
SetCaretPos
SetRect
SetSysColorsTemp
SetWindowPlacement
UnhookWindowsHookEx
VkKeyScanW
WINNLSGetEnableStatus
WINNLSGetIMEHotkey

gdi32

AngleArc
Arc
CopyEnhMetaFileA
CreatePatternBrush
ExtSelectClipRgn
FixBrushOrgEx
GdiSetBatchLimit
GetCharABCWidthsW
GetRandomRgn
GetSystemPaletteEntries
GetTextExtentPoint32W
PolyPolyline
Polygon
RectVisible
SetBkMode
SetDeviceGammaRamp
SetICMMode
SetTextColor
StrokeAndFillPath
UpdateICMRegKeyW

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

7004667f659f5a5c25d110bd919fdfa8

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 4KB

.data Size: 6KB - Virtual size: 12KB

.text
Size: 512B - Virtual size: 4KB

.data
Size: 6KB - Virtual size: 12KB