f7c6556821f070e984ac076449ba750d_JaffaCakes118

General

Target

f7c6556821f070e984ac076449ba750d_JaffaCakes118
Size

401KB
MD5

f7c6556821f070e984ac076449ba750d
SHA1

d462107178d77b5e0fe530bbb0d82365b171e5e4
SHA256

18ee4259eb0375ed60f30dac005ccd033bee558aacbbe2d125d32be073876551
SHA512

036715ae8d916ebce9d5ca7aff88ac227bb9c4b17edd536add6a5bc58c8363ea0da4c111a5ce8874ae93b7746a583f58e23e788be05f9dc309e6e07a302583ca
SSDEEP

12288:477PI399VDdE6CpV0ni6AuwtpgEYx4vPepUncAe+E9L5G:nTTA5t9Yx4v5cj5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f7c6556821f070e984ac076449ba750d_JaffaCakes118

Files

f7c6556821f070e984ac076449ba750d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1c25a983972929f932d388f9f47a6da3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

EndDoc
SetICMProfileW
GdiPlayDCScript
AddFontResourceA
PolyPolyline
SetViewportOrgEx
DescribePixelFormat
LPtoDP

comdlg32

LoadAlterBitmap
FindTextW
GetSaveFileNameA
GetSaveFileNameW
GetFileTitleW
PageSetupDlgA
FindTextA

wininet

InternetReadFileExA
FindNextUrlCacheEntryExA
InternetCombineUrlA
InternetCreateUrlW
InternetGetCertByURL
InternetAlgIdToStringA
FtpGetFileEx
FtpRenameFileW
IsUrlCacheEntryExpiredW
FindCloseUrlCache
SetUrlCacheGroupAttributeA
FtpPutFileEx
HttpSendRequestA
InternetConfirmZoneCrossingA
FindFirstUrlCacheEntryExA

shell32

SHQueryRecycleBinA
SheSetCurDrive
SHGetPathFromIDListA

kernel32

QueryPerformanceCounter
ExitProcess
WritePrivateProfileStringA
InterlockedExchange
HeapReAlloc
GetCurrentThreadId
GetMailslotInfo
FindAtomA
VirtualQuery
WritePrivateProfileStructA
HeapAlloc
LoadLibraryA
FoldStringA
TerminateProcess
GetTickCount
RtlUnwind
VirtualAlloc
EnumCalendarInfoW
GetSystemTimeAsFileTime
GetModuleHandleA
GetModuleFileNameA
GetProcAddress
lstrcmpW
GetCurrentProcessId
HeapFree
lstrcatA
LocalShrink
GetCurrentProcess

Sections

.text
Size: 127KB - Virtual size: 126KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 264KB - Virtual size: 263KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1c25a983972929f932d388f9f47a6da3

Headers

File Characteristics

Imports

gdi32

comdlg32

wininet

shell32

kernel32

Sections

.text Size: 127KB - Virtual size: 126KB

.data Size: 264KB - Virtual size: 263KB

.rsrc Size: 9KB - Virtual size: 8KB

.text
Size: 127KB - Virtual size: 126KB

.data
Size: 264KB - Virtual size: 263KB

.rsrc
Size: 9KB - Virtual size: 8KB