15256a57583d6f2423c93b1d5973a233_JaffaCakes118

General

Target

15256a57583d6f2423c93b1d5973a233_JaffaCakes118
Size

33KB
MD5

15256a57583d6f2423c93b1d5973a233
SHA1

a62c2912dcb97b83aca418f9075a921076954024
SHA256

0e4b2fe0af8262e4311cf85030bdae5679c1ee4af6cf76c3a1bc1bdfe6254a34
SHA512

5b4440e84bddec882998b62936ba2df2c13de948dabf14ccad7d6b6b7efefc612ed55da219387f4d6f4642ddbceeec0c5e5e8a7cf1738ac7818b0ddd0b6f31cb
SSDEEP

768:2RcM8cJyCgBUc1F83hvNduztnlLyYED4XTHJYdQId1pZ:T7CgBUxSztnBtO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
15256a57583d6f2423c93b1d5973a233_JaffaCakes118

Files

15256a57583d6f2423c93b1d5973a233_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ad8759db28d6b01808bfc4ff15185c75

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindFirstFileA
GlobalFlags
HeapSize
Thread32First
QueryDosDeviceW
GetDiskFreeSpaceExW
SetThreadLocale
BaseInitAppcompatCache
CreateFiberEx
FindFirstVolumeA
LocalCompact
DnsHostnameToComputerNameW
MapViewOfFile
GetSystemDefaultLangID
EnumDateFormatsA
WriteFileEx
CopyFileA
SetCommMask
EnumResourceLanguagesW
EnumResourceTypesA
BaseInitAppcompatCache
FindActCtxSectionGuid
AddAtomW
DefineDosDeviceA
PeekNamedPipe
GetConsoleCommandHistoryLengthA
GetConsoleScreenBufferInfo
EnumSystemCodePagesA

user32

RegisterWindowMessageW
DialogBoxIndirectParamW
FreeDDElParam
IsMenu
CharUpperBuffA
ExcludeUpdateRgn
BeginDeferWindowPos
EnumDisplayDevicesW
RegisterServicesProcess
PrivateExtractIconsA
GetLastActivePopup
VRipOutput
DrawEdge
GetWindowModuleFileName
SetScrollPos
WINNLSGetEnableStatus
InsertMenuA
ResolveDesktopForWOW
GetKeyboardType
GetAppCompatFlags2
GetMessageTime
SetConsoleReserveKeys
GetCaretBlinkTime
LoadLocalFonts
LockWindowUpdate
UserLpkPSMTextOut
DrawCaptionTempA
LoadIconW
SetWindowRgn
ShowCaret
SetMenuItemBitmaps
DdeFreeDataHandle
CloseClipboard
GetKeyboardState
SetWindowTextW

Sections

.text
Size: 19KB - Virtual size: 28KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ad8759db28d6b01808bfc4ff15185c75

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 19KB - Virtual size: 28KB

.idata Size: 2KB - Virtual size: 4KB

.rsrc Size: 10KB - Virtual size: 12KB

.data Size: 512B - Virtual size: 4KB

.text
Size: 19KB - Virtual size: 28KB

.idata
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 10KB - Virtual size: 12KB

.data
Size: 512B - Virtual size: 4KB