f4e9b928d7e7dc3f07ecbf028d4311c4_JaffaCakes118

General

Target

f4e9b928d7e7dc3f07ecbf028d4311c4_JaffaCakes118
Size

502KB
MD5

f4e9b928d7e7dc3f07ecbf028d4311c4
SHA1

11cb498563fe56b97990cc3a913d8e560f928670
SHA256

863736c6dff3a2e7ffa684b951c5e9be9fdff118599db2b959155ada4049881b
SHA512

4af88d4528040d684fc3eeba2ccc824089f31c9c39f606d587ab49c0ab26186821d3e9a99350ecb81dd32e595dbcba31510fb2ba800af48cd0947f6e309993ee
SSDEEP

12288:YyIUf6kkgb6wGKufKew3vOzaLi/Rov4YQDTkL2/1:N56kkgewGKuyO2LIjxHk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f4e9b928d7e7dc3f07ecbf028d4311c4_JaffaCakes118

Files

f4e9b928d7e7dc3f07ecbf028d4311c4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c7df886a6b7f41c262c200dfa4d7beaa

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
HeapDestroy
GetVersionExA
GetVersionExA
GetVersionExA
FreeLibrary
UnhandledExceptionFilter
LocalFree
ReadFile
InterlockedDecrement
GetModuleHandleA
DisableThreadLibraryCalls
GetTickCount
LocalAlloc
GetLastError
UnhandledExceptionFilter
InitializeCriticalSection
HeapAlloc
CreateFileW
InterlockedDecrement
GetSystemTimeAsFileTime
lstrlenA
VirtualAlloc
GetProcessHeap
GetModuleHandleW
LocalFree
CreateEventW
LeaveCriticalSection
FreeLibrary
InterlockedExchange
lstrlenA
InterlockedDecrement
GetModuleHandleW
GetModuleFileNameA
GetProcAddress
GetSystemTimeAsFileTime
InitializeCriticalSection
GetModuleFileNameA
HeapFree
LeaveCriticalSection
GetLastError
lstrlenA
VirtualProtect
LoadLibraryA
GetModuleFileNameW
CreateFileW
LoadLibraryA
LocalFree
GetCurrentThreadId
CreateFileW
InitializeCriticalSection
LocalFree

gdi32

SetBkColor
CreateFontA
CreatePen
GetBkMode
MoveToEx
MoveToEx
SetPixel
SetWindowExtEx
GetCurrentObject
GetBkMode
SetTextColor
MoveToEx
BitBlt
CreateBitmapIndirect
GetWindowExtEx
CreateFontA
Ellipse
StretchBlt
Rectangle
CreateSolidBrush
CreateDIBitmap
BitBlt
LineTo
BitBlt
CreateFontIndirectA
MoveToEx
SetWindowExtEx
CreateDIBSection
GetPixel
GetPixel
CreateBitmapIndirect
CreateFontA
GetBkColor
BitBlt
GetBrushOrgEx
SetPixel
CreateSolidBrush
GetBkMode
RoundRect
GetBkColor
GetWindowExtEx
GetWindowExtEx
GetPixel
CreateDIBSection
BitBlt
CreateFontA
GetPixel
RoundRect
GetBrushOrgEx
BitBlt
SetPixel
CombineRgn
CreateFontIndirectA
CreateFontA
BitBlt
GetWindowOrgEx
SetBkColor
SetTextColor

Sections

.text
Size: 497KB - Virtual size: 960KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c7df886a6b7f41c262c200dfa4d7beaa

Headers

File Characteristics

Imports

kernel32

gdi32

Sections

.text Size: 497KB - Virtual size: 960KB

.rdata Size: 3KB - Virtual size: 4KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 497KB - Virtual size: 960KB

.rdata
Size: 3KB - Virtual size: 4KB

.rsrc
Size: 1024B - Virtual size: 4KB