f841e6d24d5948be6b97986dbf180495_JaffaCakes118

General

Target

f841e6d24d5948be6b97986dbf180495_JaffaCakes118
Size

282KB
MD5

f841e6d24d5948be6b97986dbf180495
SHA1

2fddb2ba27a050af05b18601f85be4002689248c
SHA256

67765c2fd91a9fc0316beb3d22bf622a480d3a8cd63401ca4cb6075dafd0d2e9
SHA512

154bf8973e1746d2170159e0bf95482d0aff3aeede1b41392601846a876967034b36269a0afed8872af4e0a595661792a3fb76f9f18cf01c1da666be08b9425f
SSDEEP

6144:VXhVvciDfOhR3F/4ydYtQfBpeSLh1J7qLESnJml1aUtw85c2uze:HFwR3Gyu2fBpe+R7q5JmlQU2o

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f841e6d24d5948be6b97986dbf180495_JaffaCakes118

Files

f841e6d24d5948be6b97986dbf180495_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b061806c7e21a077ae279f57a508f9c2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHGetDesktopFolder
SHGetDiskFreeSpaceExA

gdi32

CombineTransform
GetGraphicsMode
PolylineTo
SelectPalette
CreateRectRgn
CreateDIBitmap
PolyDraw
GetStretchBltMode
GetKerningPairsA
SetMiterLimit
GetNearestPaletteIndex
GetSystemPaletteEntries
SetTextColor
GetSystemPaletteUse
SetDIBitsToDevice
CreateRoundRectRgn
MoveToEx
SetBitmapBits
AnimatePalette

comctl32

ord2

kernel32

SetFileShortNameA
GetProcAddress
LoadLibraryA
GetLogicalDriveStringsA
GetModuleHandleA
GetConsoleTitleA
GetFileType
GetVolumeInformationA
ReadConsoleOutputA
Sleep
GetFileAttributesA
GetStartupInfoA
WriteConsoleOutputAttribute

user32

SubtractRect
IntersectRect
LoadBitmapA
SetCaretPos
MessageBoxIndirectW
PtInRect
WinHelpA
MoveWindow
SetWindowPos
IsWindowVisible
DestroyCaret

msvcrt

_exit
_c_exit
_cexit
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_controlfp
_except_handler3
_XcptFilter

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 116B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.udata
Size: - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 176B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b061806c7e21a077ae279f57a508f9c2

Headers

File Characteristics

Imports

shell32

gdi32

comctl32

kernel32

user32

msvcrt

Sections

.text Size: 7KB - Virtual size: 6KB

.data Size: 512B - Virtual size: 116B

.udata Size: - Virtual size: 48KB

.rdata Size: 84KB - Virtual size: 84KB

.reloc Size: 512B - Virtual size: 176B

.text
Size: 7KB - Virtual size: 6KB

.data
Size: 512B - Virtual size: 116B

.udata
Size: - Virtual size: 48KB

.rdata
Size: 84KB - Virtual size: 84KB

.reloc
Size: 512B - Virtual size: 176B