05faf4bb57fc28c00d1fa5dc71ee71ce_JaffaCakes118

General

Target

05faf4bb57fc28c00d1fa5dc71ee71ce_JaffaCakes118
Size

90KB
MD5

05faf4bb57fc28c00d1fa5dc71ee71ce
SHA1

32b5e5fd313f0534188c5fa691829eac10ea3989
SHA256

6d2cd6d0dcaa3eea90c7e97ba6ef6c7638cdb9b65e820182d24bca9591e8556b
SHA512

68eab8543acf9a1c1d8abb4238f46c8701809a852a8353e026b51f775cfdee5c9bd58a1a1f3fe7c3ceee5a390aaaa67fcfc7982067fc9eae89529d78c4521e2a
SSDEEP

1536:LX+SVN1uclp9NK0RtPzgkZQynkbPQZPrWb8UKDFr6k/D5hUNG1XhPbYHL4u:LxVN15RpMDGkLQtHUKDFWgD51xPbAL4u

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
05faf4bb57fc28c00d1fa5dc71ee71ce_JaffaCakes118

Files

05faf4bb57fc28c00d1fa5dc71ee71ce_JaffaCakes118
.exe windows:5 windows x86 arch:x86

e89043380a236116d5f694222965d953

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_exit
_except_handler3
exit
__set_app_type
_acmdln
__p__commode
__p__fmode
_adjust_fdiv
sqrt
_initterm
__setusermatherr
_XcptFilter
__getmainargs

kernel32

VirtualProtect
GetModuleHandleA

user32

OemToCharA
GetPropA
GetKeyboardType
CheckMenuItem
FillRect
DrawFrameControl
SendDlgItemMessageA
EqualRect
GetScrollInfo
CreatePopupMenu
GetMenuState
ShowOwnedPopups
GetSystemMenu
InflateRect
RegisterClassA
SetCapture
CreateMenu
GetLastActivePopup
WinHelpA
InsertMenuA
CallWindowProcA
GetForegroundWindow
WaitMessage
ClientToScreen
GetWindowThreadProcessId
GetDC
GetCursorPos
MapWindowPoints
GetCapture
SendMessageA
WindowFromPoint
SetClassLongA
GetFocus
DestroyWindow
GetActiveWindow
GetIconInfo
EnableMenuItem
GetDlgItem
SetTimer
RemovePropA
ShowCursor
LoadIconA
IsRectEmpty
GetScrollPos
GetWindowPlacement
DrawIconEx
CharNextA
GetWindowLongA
PostQuitMessage
DrawTextA
MessageBoxA
GetClassNameA
GetWindow
SetClipboardData
FindWindowA
InvalidateRect
DeleteMenu
CallNextHookEx
SetActiveWindow
GetClientRect
BeginPaint
EndPaint
GetMenuStringA
SetWindowPlacement
SetScrollPos
SetForegroundWindow
GetSysColor
ReleaseDC
TranslateMessage
SetPropA
LoadBitmapA
EmptyClipboard
CloseClipboard
CreateWindowExA
SetWindowTextA
GetMenu
GetClassInfoA
RegisterClipboardFormatA
IsDialogMessageA
SetRect
GetDesktopWindow
DestroyIcon
DrawIcon
SetWindowsHookExA
SetWindowPos
SetCursor
ScrollWindow
MessageBeep
DialogBoxParamA
DestroyCursor
IntersectRect
SetScrollRange
EnumThreadWindows
DispatchMessageA
LoadStringA
GetTopWindow
GetSysColorBrush
SetWindowLongA
GetKeyState
PostMessageA

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e89043380a236116d5f694222965d953

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

Sections

.text Size: 11KB - Virtual size: 10KB

.data Size: 60KB - Virtual size: 59KB

.rsrc Size: 18KB - Virtual size: 18KB

.text
Size: 11KB - Virtual size: 10KB

.data
Size: 60KB - Virtual size: 59KB

.rsrc
Size: 18KB - Virtual size: 18KB