468f1c04397f91628bc42f2edb3f7eb9_JaffaCakes118

General

Target

468f1c04397f91628bc42f2edb3f7eb9_JaffaCakes118
Size

130KB
MD5

468f1c04397f91628bc42f2edb3f7eb9
SHA1

f0f35e3d2af91b1dc50744765c3575ceee956be1
SHA256

e8527d1b4742e2e951cbc537e48f784d5e66fb22eefb9d069d480b3be0918fec
SHA512

0dbba336b2bb06aea3d256a632dde7e3a270822a37bf52d1baf40228b1a77159a13f844b27c5fecbab91f1d76c4bd63272aa387e6a8db3004f96408292051ec6
SSDEEP

3072:gfprz/42PSZp/ib6SRBmHI9rhhdCozKZM5pw6JG:6pvlPa0OSRBmoOoz5pw68

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
468f1c04397f91628bc42f2edb3f7eb9_JaffaCakes118

Files

468f1c04397f91628bc42f2edb3f7eb9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f1f3d0fc845f7851a8c5581a6cb3c306

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDlgItem
CalcMenuBar
GetDC
DrawIcon
CreateIcon
CopyImage
GetWindowTextA
AppendMenuW
DrawTextA
AppendMenuA
LoadMenuA
GetCursor
DrawTextW
LoadCursorA
CloseWindow
BlockInput
BlockInput
DialogBoxParamW
DrawTextA
InsertMenuA
LoadMenuA
CalcMenuBar
CopyRect
GetWindowTextA
LoadCursorA
GetWindowTextLengthA
AppendMenuA
IsMenu
CreateIcon
CloseWindow
AlignRects
GetFocus
DrawIcon
AppendMenuW
DrawIconEx
EndDialog
GetDlgItem

kernel32

FreeConsole
lstrcatA
FreeConsole
Sleep
FreeConsole
GetOEMCP
FreeConsole
GetCurrentProcessId
FreeConsole
FreeLibrary
FreeConsole
ExitProcess
FreeConsole
lstrcpyA
FreeConsole
HeapAlloc
FreeConsole
GetFileSize
GetCommandLineA
GlobalFree
Sleep
lstrcmpiA
GetFileType
DeleteFileA
lstrcpyA
GetOEMCP
GetCurrentProcess
ExitProcess
GetLastError
WideCharToMultiByte
GetModuleHandleA
GetLocalTime
lstrcmpA
GlobalAlloc
GetConsoleOutputCP
GetLocalTime
GetCurrentThread
GlobalAlloc
lstrcpyA
GlobalFree
GetCurrentThreadId
lstrcpynA
GetFileSize
WideCharToMultiByte
GetCurrentProcess
FreeLibrary
GetCommandLineA
GetConsoleOutputCP
GetFileAttributesA
HeapAlloc
GetOEMCP
DeleteFileA
GetModuleFileNameA
ExitProcess
lstrcatA

Sections

.text
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdaaa
Size: 110KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f1f3d0fc845f7851a8c5581a6cb3c306

Headers

File Characteristics

Imports

user32

kernel32

Sections

.text Size: 15KB - Virtual size: 14KB

.rdaaa Size: 110KB - Virtual size: 109KB

.edata Size: 1024B - Virtual size: 124KB

.text
Size: 15KB - Virtual size: 14KB

.rdaaa
Size: 110KB - Virtual size: 109KB

.edata
Size: 1024B - Virtual size: 124KB