ec637316349e3c78aa688d5edc52aeb8_JaffaCakes118

General

Target

ec637316349e3c78aa688d5edc52aeb8_JaffaCakes118
Size

133KB
MD5

ec637316349e3c78aa688d5edc52aeb8
SHA1

03ded3410c9669475e121e9b6f5e6b961b6e2fcf
SHA256

73ed90226f943835ed919cfe7f7e6b3018d18d5bf34b198a5248b7dcc97ee558
SHA512

098855864ca37ccac57957edb997a8d752a621e56d6a00dc6d1cc022a7d41abcb4d5981f8a99eeabfb62f84a5c30a591a88571d4cc3a386414f9b77d2d1afc58
SSDEEP

3072:34oR8O17lp8MJtDxE1cuNTqVAVC5NPMVtAOyx9jCWtZog:Il0YKu1cuNTqVyCStAOyx9Ovg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ec637316349e3c78aa688d5edc52aeb8_JaffaCakes118

Files

ec637316349e3c78aa688d5edc52aeb8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

014ebe5e5c9789cb1aefafbcf0e91507

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenW
GetConsoleOutputCP
lstrcmpiA
DeleteFileW
GlobalFindAtomA
GetThreadLocale
lstrcmpiW
GetModuleHandleA
lstrlenA
GetCurrentProcessId
GetACP
GetCurrentProcess
CopyFileA
GetVersion
RemoveDirectoryA
GetModuleHandleW
GetUserDefaultLangID
lstrcmpA
IsDebuggerPresent
SetCurrentDirectoryA
GetCommandLineW
GetCurrentThreadId
GetLastError
GetOEMCP
GlobalFindAtomW
GetCommandLineA
VirtualAlloc
DeleteFileA
MulDiv
GetTickCount
GetProcessHeap
SetLastError
GetCurrentThread

gdi32

ScaleViewportExtEx
BitBlt
EndDoc
GetDCOrgEx
StretchBlt
MoveToEx
LineTo
CreateCompatibleBitmap
SetTextColor
CreateRectRgn
CreateBitmap
CreatePen
SetDIBColorTable
GetDeviceCaps
GetStockObject
SetBrushOrgEx
Rectangle
GetTextMetricsA
SelectClipPath
SetMapMode
PatBlt
EndPage
SetStretchBltMode
DPtoLP
RestoreDC
OffsetViewportOrgEx
SelectPalette
GetEnhMetaFilePaletteEntries
LPtoDP
SaveDC
MaskBlt
EndPath
CreatePatternBrush
UnrealizeObject
ExcludeClipRect
SetColorSpace
DeleteDC
GetClipBox
SetBkMode
RectVisible
SetROP2
DeleteObject
GetPixel
SetViewportOrgEx
GetPaletteEntries
SetBkColor
BeginPath
GetDIBColorTable
SetWindowExtEx

user32

CharNextA

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 101KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

014ebe5e5c9789cb1aefafbcf0e91507

Headers

File Characteristics

Imports

kernel32

gdi32

user32

Sections

.text Size: 12KB - Virtual size: 12KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 101KB - Virtual size: 100KB

.rsrc Size: 16KB - Virtual size: 84KB

.text
Size: 12KB - Virtual size: 12KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 101KB - Virtual size: 100KB

.rsrc
Size: 16KB - Virtual size: 84KB