e891840ecb20bfad4f0b98a4dd1b9ae0_JaffaCakes118

General

Target

e891840ecb20bfad4f0b98a4dd1b9ae0_JaffaCakes118
Size

93KB
MD5

e891840ecb20bfad4f0b98a4dd1b9ae0
SHA1

ec81e18bf29803fa88ef851ab56c3c100ce22b1e
SHA256

2e82c926f5c3d54e94ba7c922a8e23deff9ffc7267aa9eed7aadd8d2fe4b5d5c
SHA512

c8e3851014528205d6b85490cb79d21e059cf5f522c4874408dc1e0b1d9260a260ea8c4d8a551542b9e21f0cb71a54a4e71fcac19587a422be539af35ca33304
SSDEEP

1536:l6TuZRodM0Ps0Gu69k7eXpXVuTRC4mLonFg:l6aAy0Px69RQ44mLon

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e891840ecb20bfad4f0b98a4dd1b9ae0_JaffaCakes118

Files

e891840ecb20bfad4f0b98a4dd1b9ae0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

46b61b6ca390a44c2140384655d0f267

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CreatePalette
GetDCOrgEx
CreateBrushIndirect
GetPixel
CreateBitmap
CreatePenIndirect
GetClipBox
ExtTextOutA
CreateSolidBrush
SetTextColor
GetPixel
GetBrushOrgEx
CreateCompatibleDC
CreateDIBSection
CreateHalftonePalette
DeleteObject
ExcludeClipRect
CreateCompatibleBitmap
CreateDIBitmap
RestoreDC
DeleteDC
GetBitmapBits
CreateFontIndirectA
GetCurrentPositionEx

kernel32

GetFileSize
CreateProcessA
GetFileTime
DeleteFileW
OpenFile
ReadFile
ExitThread
FindFirstFileA
Sleep
DeleteAtom
GetComputerNameA
GetCPInfo
GetCommandLineA
GetLastError
FindAtomA
GlobalFree
ReadConsoleA
CreateThread
OpenFileMappingA
DeleteFileA
GetStdHandle
WriteFile
SetLastError
GetConsoleMode

comctl32

DrawStatusText
ImageList_Create
DrawStatusTextW
DllGetVersion
CreateStatusWindowW
ImageList_DrawEx
ImageList_DragEnter
ImageList_Add
CreateUpDownControl
ImageList_Draw
ImageList_GetIcon
CreateToolbarEx
ImageList_LoadImageA
CreateToolbar
ImageList_LoadImageW
ImageList_Copy
CreateMappedBitmap
InitCommonControls
ImageList_Destroy
ImageList_AddIcon
ImageList_EndDrag
MenuHelp
CreateStatusWindow
ImageList_GetIconSize

Sections

.text
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 3KB - Virtual size: 22.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

46b61b6ca390a44c2140384655d0f267

Headers

File Characteristics

Imports

gdi32

kernel32

comctl32

Sections

.text Size: 24KB - Virtual size: 24KB

.data Size: 56KB - Virtual size: 55KB

.tls Size: 3KB - Virtual size: 22.7MB

.rdata Size: 4KB - Virtual size: 7KB

.idata Size: 3KB - Virtual size: 3KB

.text
Size: 24KB - Virtual size: 24KB

.data
Size: 56KB - Virtual size: 55KB

.tls
Size: 3KB - Virtual size: 22.7MB

.rdata
Size: 4KB - Virtual size: 7KB

.idata
Size: 3KB - Virtual size: 3KB