3f4a0b87d54df7e1c06263a9236c926e_JaffaCakes118

General

Target

3f4a0b87d54df7e1c06263a9236c926e_JaffaCakes118
Size

418KB
MD5

3f4a0b87d54df7e1c06263a9236c926e
SHA1

eee7b6ef44cffe6e1220d13cc611079432ca68cd
SHA256

d2baee5ceda225f8077c6fd435a4905f04a73c020a033282cd56e29fbdfa13a4
SHA512

c157e81fc578ca27601d46985a18b35fd136fef5cc6525f42c23618e47ada6537212853478cc6d462b6881ff7a0e50d7a4ef8c6ee197ec431315a343d65e5de9
SSDEEP

12288:wQbj38ScsCP+QXw+qD+2vZ50ytkqsqP6QiXEGcQNCSkii:FdgP+QXw+KJB3LfiUGru

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3f4a0b87d54df7e1c06263a9236c926e_JaffaCakes118

Files

3f4a0b87d54df7e1c06263a9236c926e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8c598cf867544e0cc2641f9796c9da2c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetWindowThreadProcessId
BroadcastSystemMessageA
GetWindowRgn
DefFrameProcW
GetWindowLongW
GetKeyboardType
GetKeyboardLayoutNameW
DefMDIChildProcA
DispatchMessageW
WinHelpA
CharPrevW
SetUserObjectSecurity
OemToCharA
SetClipboardData
SetWindowLongW
GetShellWindow
DrawAnimatedRects
EnumDisplayDevicesA
DefMDIChildProcW
SetScrollRange
FindWindowExA
CreateDialogIndirectParamA
SetCursor
ExitWindowsEx
CreateAcceleratorTableA

kernel32

GetSystemDefaultLCID
WriteTapemark
BeginUpdateResourceA
GetVolumeInformationW
CreateEventA
ConvertDefaultLocale
CreateEventW
GetThreadPriority
WriteProcessMemory
WritePrivateProfileSectionA
GetStringTypeExW
IsValidCodePage
LocalSize
OpenMutexA
GetProfileStringA
WritePrivateProfileStructA
GetProfileStringW
GlobalGetAtomNameW
GetProcessVersion
FindAtomA
TlsFree
GetModuleHandleW
GetExitCodeProcess
CancelIo
WaitCommEvent
SetProcessAffinityMask
GetCommandLineA
CreateFiber
SetConsoleCursorPosition
DebugBreak
GetQueuedCompletionStatus
GetTapePosition
GetTapeParameters
ScrollConsoleScreenBufferA
GetDiskFreeSpaceExA
GetFileAttributesExW
QueryDosDeviceA
CreateMutexA
GetPrivateProfileIntW
CreateDirectoryExA
SetPriorityClass
WinExec
GetConsoleCP
CreateFileW
SetVolumeLabelW
SetProcessWorkingSetSize
SwitchToThread

Sections

.text
Size: 37KB - Virtual size: 347KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 366KB - Virtual size: 365KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8c598cf867544e0cc2641f9796c9da2c

Headers

File Characteristics

Imports

user32

kernel32

Sections

.text Size: 37KB - Virtual size: 347KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 366KB - Virtual size: 365KB

.rsrc Size: 10KB - Virtual size: 9KB

.text
Size: 37KB - Virtual size: 347KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 366KB - Virtual size: 365KB

.rsrc
Size: 10KB - Virtual size: 9KB