0f6bdd93d57ecb6c733c041b87d75ae8_JaffaCakes118

General

Target

0f6bdd93d57ecb6c733c041b87d75ae8_JaffaCakes118
Size

81KB
MD5

0f6bdd93d57ecb6c733c041b87d75ae8
SHA1

679769fad627a78fe94f5ca0d21f057068dfd490
SHA256

f28a233b27612beeb7059f049ba3b81a437c36bb578b57074a4273b13dcc2503
SHA512

d9ec7d251c1f9d14b07e8c6f40508364a9b4aec096d68d2c82d3be6447bfed46370c1da0589c396bac4ce9c7a601087b8e94b301d8448620ff1d714577f00acb
SSDEEP

768:FzUZLhoQ9JvRFHZ5gTaMnaMbMaUvxZFLgKB3yISDwEXlGWC9oBPDFQRbkLipj:FzUvTDzWb0dMKB3ylwxWC9oJLipj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0f6bdd93d57ecb6c733c041b87d75ae8_JaffaCakes118

Files

0f6bdd93d57ecb6c733c041b87d75ae8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

126a0fdb5c761b8facb40c41bcf88ae6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLocalTime
DeleteFileA
GetLastError
GetStringTypeA
GetCPInfo
GlobalFree
GlobalAlloc
GetModuleFileNameA
lstrcatA
WideCharToMultiByte
GetModuleHandleA
GetOEMCP
GetFileAttributesA
GetFileSize
GetLogicalDrives
GetFileType
Sleep
FreeConsole
GetStringTypeW
FreeConsole
GetLogicalDrives
FreeConsole
ExitProcess
FreeConsole
GlobalFree
FreeConsole
lstrcpynA
FreeConsole
DeleteFileA
FreeConsole
GetCommandLineA
FreeConsole
GetModuleHandleA
FreeConsole
GetLocalTime

user32

GetMenu
GetDC
DrawIconEx
EndDialog
IsWindow
CalcMenuBar
AppendMenuW
AppendMenuA
DrawIcon
GetWindowTextLengthA
CopyRect
IsMenu
GetDlgItem
LoadMenuA
GetCursor
DrawTextA
DialogBoxParamA
CalcMenuBar
DrawTextW
LoadCursorA
GetDlgItem
AlignRects
CopyIcon
GetCursor
CloseWindow
LoadMenuA
IsMenu
CopyImage
BlockInput
DrawIconEx
CreateIcon
DrawIcon
CopyRect
GetWindowTextLengthA
AppendMenuW
GetWindowTextA
InsertMenuA
GetDC

Sections

.tedt
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rddda
Size: 47KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 9KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bas
Size: - Virtual size: 642B

IMAGE_SCN_MEM_READ

.radc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

126a0fdb5c761b8facb40c41bcf88ae6

Headers

File Characteristics

Imports

kernel32

user32

Sections

.tedt Size: 11KB - Virtual size: 11KB

.rddda Size: 47KB - Virtual size: 47KB

.edata Size: 9KB - Virtual size: 32KB

.bas Size: - Virtual size: 642B

.radc Size: 8KB - Virtual size: 8KB

.rsrc Size: 1024B - Virtual size: 4KB

.tedt
Size: 11KB - Virtual size: 11KB

.rddda
Size: 47KB - Virtual size: 47KB

.edata
Size: 9KB - Virtual size: 32KB

.bas
Size: - Virtual size: 642B

.radc
Size: 8KB - Virtual size: 8KB

.rsrc
Size: 1024B - Virtual size: 4KB