fed48e8d3c9f7744f6624f6a5e352f54_JaffaCakes118

General

Target

fed48e8d3c9f7744f6624f6a5e352f54_JaffaCakes118
Size

225KB
MD5

fed48e8d3c9f7744f6624f6a5e352f54
SHA1

c3f8c3d68a2dfd9c8e0cc26e8aae6ce9f1d0b351
SHA256

46b354893dd566368fb31028eaba7791de8b97629b51deba34a1c0ceb1e2d46f
SHA512

407659e08963eb5ce680409afbae946d36210568680219a0989226e9214321907cb4baddfc5f6390815c7f5aa5548bb6bbc0eb39ab82e824e7bb41ec693475ed
SSDEEP

6144:DrTNT9FnK1wm8rZXYp7ymjpdG8DLAobB:zbFnK1wmOm1H3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fed48e8d3c9f7744f6624f6a5e352f54_JaffaCakes118

Files

fed48e8d3c9f7744f6624f6a5e352f54_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ba8855e50470705f25b47bd4a893d803

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

CallNamedPipeW
CopyFileA
CreateThread
DeviceIoControl
DosDateTimeToFileTime
ExitProcess
GetACP
GetAtomNameA
GetFileAttributesExW
GetFullPathNameW
GetLastError
GetLongPathNameW
GetShortPathNameW
HeapLock
HeapWalk
IsValidCodePage
LocalUnlock
OutputDebugStringA
ReleaseMutex
SetConsoleTitleW
SetErrorMode
SetMailslotInfo
SwitchToFiber
TlsSetValue
UnmapViewOfFile
WriteConsoleInputA
lstrcpyW
lstrlen
lstrlenW

user32

AdjustWindowRectEx
CharUpperBuffA
CheckMenuRadioItem
ChildWindowFromPointEx
DdeConnectList
DefWindowProcA
EnumDisplaySettingsW
GetDlgItem
GetSysColor
GetUserObjectInformationW
GetWindowLongA
HideCaret
InsertMenuW
IsCharUpperA
MapDialogRect
RegisterLogonProcess
RegisterWindowMessageA
SetCursor
SetThreadDesktop
SetWindowsHookExA
UnlockWindowStation
wvsprintfA

gdi32

CreateDCA
CreateDIBPatternBrushPt
CreateDIBSection
CreateRectRgn
DescribePixelFormat
DrawEscape
ExtSelectClipRgn
GdiComment
GetBitmapBits
GetBoundsRect
GetCharWidthFloatA
GetCharacterPlacementA
GetEnhMetaFileA
GetEnhMetaFileHeader
GetRasterizerCaps
GetTextExtentExPointA
GetViewportOrgEx
GetWindowExtEx
LPtoDP
OffsetClipRgn
Rectangle
ResetDCW
SetArcDirection
SetTextCharacterExtra
StrokeAndFillPath

Sections

.text
Size: 512B - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 223KB - Virtual size: 236KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 200KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ba8855e50470705f25b47bd4a893d803

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 20KB

.data Size: 223KB - Virtual size: 236KB

.idata Size: - Virtual size: 8KB

.rsrc Size: 1024B - Virtual size: 200KB

.text
Size: 512B - Virtual size: 20KB

.data
Size: 223KB - Virtual size: 236KB

.idata
Size: - Virtual size: 8KB

.rsrc
Size: 1024B - Virtual size: 200KB