fdea6da730f5126b4d6339cf696ff064_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

fdea6da730f5126b4d6339cf696ff064_JaffaCakes118
Size

19KB
MD5

fdea6da730f5126b4d6339cf696ff064
SHA1

c0e8eaa1f38dc5b311fe0ae8763fa0542ba793a1
SHA256

a1560ffe5f3e9f6eea63293a22f24e888ee5edc01f4a7ce179a802378ad168ec
SHA512

d532743b27b6db1e4181ae6a7e6e1e13f4cbe92afabe5089a0d12711b369fc556ae6c9c07c185e320ac57e5b14adf2b5df0b5ce78d7322b00dd613c8641fba2f
SSDEEP

384:VamY8qmUVHi8r52vBw0TJc6vpkASQRyy0+hQQnx:VarSxlgxh+/x

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fdea6da730f5126b4d6339cf696ff064_JaffaCakes118

Files

fdea6da730f5126b4d6339cf696ff064_JaffaCakes118
.exe windows:0 windows x86 arch:x86

26738b3fa4cbbdfe758041df38b8fa22

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntdll

NtSetInformationJobObject
NtAllocateVirtualMemory
ZwQueryDefaultUILanguage

kernel32

CreateNamedPipeA
ExpandEnvironmentStringsA
CreateMutexA
GetModuleFileNameA
lstrcmpiA
GetFileTime
AddAtomW
FlushFileBuffers
CloseHandle
GetVolumeInformationA
ConnectNamedPipe
WaitForMultipleObjects
lstrcpyA
WaitForSingleObject
SetEvent
GetCurrentProcessId

user32

SetForegroundWindow
GetKeyboardLayout
keybd_event
InsertMenuItemW
IsDlgButtonChecked
SendMessageW
GetCursorInfo
CharPrevA
GetWindowLongW
TrackPopupMenu
SetDlgItemTextA
GetWindowTextA
PeekMessageW

gdi32

CreateBitmap
CreateFontW
GetDIBits
TextOutW
CreateDIBSection

advapi32

RegFlushKey

comdlg32

GetSaveFileNameW
GetOpenFileNameA

shell32

StrChrIA

ole32

CreateFileMoniker
GetClassFile
OleCreateEx

version

GetFileVersionInfoSizeA
VerLanguageNameA
VerQueryValueW

ws2_32

recvfrom

comctl32

ImageList_GetDragImage
CreateMappedBitmap
SetWindowSubclass

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 262B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

26738b3fa4cbbdfe758041df38b8fa22

Headers

File Characteristics

Imports

ntdll

kernel32

user32

gdi32

advapi32

comdlg32

shell32

ole32

version

ws2_32

comctl32

Sections

.text Size: 13KB - Virtual size: 12KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 29KB - Virtual size: 28KB

.rsrc Size: 5KB - Virtual size: 5KB

.reloc Size: 512B - Virtual size: 262B

.text
Size: 13KB - Virtual size: 12KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 29KB - Virtual size: 28KB

.rsrc
Size: 5KB - Virtual size: 5KB

.reloc
Size: 512B - Virtual size: 262B