f5603f0e985e8beae47097fe9161d54f_JaffaCakes118

General

Target

f5603f0e985e8beae47097fe9161d54f_JaffaCakes118
Size

137KB
MD5

f5603f0e985e8beae47097fe9161d54f
SHA1

2f7097cbac6ab7cd76bb671691a5f1e4b5a5cf9b
SHA256

c26d8ae851e5f66d8cd4c0c81974119ce0932c277c212fd30a7251b8499f6e80
SHA512

ae63c7d5ca4055e875cb09ca8fa25b3193d7edcc4455a95cc2fcba61b37bf1ed3a1d284a94f8b360b88b0a43bfb5c723322ee9a41f9ad0274fd79bf805ff5408
SSDEEP

3072:xQ2Z7QOzKibQc5jMDesie5nt1qDZqxOkJRy/vv5mz:q2Bzic5jMDvntQM9Rz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f5603f0e985e8beae47097fe9161d54f_JaffaCakes118

Files

f5603f0e985e8beae47097fe9161d54f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2fb9c6f93c5965da59b45086dd64d45c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CreateCompatibleBitmap
UnrealizeObject
BeginPath
GetTextMetricsA
PatBlt
LPtoDP
OffsetViewportOrgEx
ScaleViewportExtEx
CreateBitmap
BitBlt
GetDeviceCaps
RectVisible
SetTextColor
SetWindowExtEx
DeleteDC
SelectPalette
GetBrushOrgEx
DeleteObject
GetPixel
SetStretchBltMode
PlayEnhMetaFile
SelectObject
GetPaletteEntries
MoveToEx
CreatePen
Rectangle
GetDIBColorTable
PtVisible
SetColorSpace
SaveDC
EndDoc
GetCharWidth32A
SelectClipPath
StartPage
IntersectClipRect
RestoreDC
Chord
CreateRectRgn
GetDCOrgEx
EndPath
SetViewportOrgEx
GetEnhMetaFilePaletteEntries
SetDIBColorTable
SetBkMode
GetStockObject
SetBkColor
ExcludeClipRect
EndPage
SetBrushOrgEx
DPtoLP
LineTo
MaskBlt
CreatePatternBrush
SetROP2

user32

CharNextA

kernel32

lstrcmpiW
DeleteFileW
SetLastError
lstrlenW
SetCurrentDirectoryA
GetCommandLineA
GetProcessHeap
lstrcmpA
DeleteFileA
GlobalFindAtomA
GetOEMCP
GetVersion
GetCurrentProcess
GetModuleHandleW
RemoveDirectoryA
GetModuleHandleA
GetLastError
GetThreadLocale
CopyFileA
GlobalFindAtomW
MulDiv
GetCurrentThread
GetACP
GetConsoleOutputCP
GetTickCount
lstrcmpiA
GetCommandLineW
IsDebuggerPresent
GetUserDefaultLangID
GetCurrentThreadId
GetCurrentProcessId
lstrlenA
VirtualAlloc

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 104KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2fb9c6f93c5965da59b45086dd64d45c

Headers

File Characteristics

Imports

gdi32

user32

kernel32

Sections

.text Size: 14KB - Virtual size: 13KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 104KB - Virtual size: 103KB

.rsrc Size: 16KB - Virtual size: 15KB

.text
Size: 14KB - Virtual size: 13KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 104KB - Virtual size: 103KB

.rsrc
Size: 16KB - Virtual size: 15KB