ff313e41a589e1d90209076e8c51e450_JaffaCakes118

General

Target

ff313e41a589e1d90209076e8c51e450_JaffaCakes118
Size

68KB
MD5

ff313e41a589e1d90209076e8c51e450
SHA1

963ba925428ef2a05c517c0a90cebdd250e708b5
SHA256

061c3fe458fc31ccd7e1f803d573136663ba79d85f00f38fc809719876ddf9d2
SHA512

afd0dfc6c6b38ec738e802c3fb4c4995a1904ba7146b01e1d54a9488c83b4ebb0f677be11e85a8362f66d7654c04a0b6f0e3d14adcc3b2cc6e66c8ee9850794d
SSDEEP

768:6JwpWd/UbrsN8JrdowCbTfOIcJHyUJo7mDhaDbjXmQzeG436:6uUOboqddCXO1W7mDADHmpz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ff313e41a589e1d90209076e8c51e450_JaffaCakes118

Files

ff313e41a589e1d90209076e8c51e450_JaffaCakes118
.exe windows:4 windows x86 arch:x86

18154cc1b8ae3e84058d8411b046ecd8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CreateDIBSection
CreateDIBitmap
DeleteDC
CreateSolidBrush
CreateHalftonePalette
CreatePalette
ExcludeClipRect
GetBitmapBits
RestoreDC
CreatePenIndirect
GetPixel
ExtTextOutA
SetTextColor
CreateBrushIndirect
DeleteObject
GetClipBox
GetDCOrgEx
GetPixel
GetBrushOrgEx
CreateCompatibleDC
CreateBitmap
CreateFontIndirectA
CreateCompatibleBitmap
GetCurrentPositionEx

kernel32

ReadConsoleA
OpenFile
SetLastError
GetConsoleMode
DeleteFileA
WriteFile
DeleteAtom
CreateThread
GetCommandLineA
FindAtomA
GetFileTime
ExitThread
GetCPInfo
GetLastError
GlobalFree
CreateProcessA
FindFirstFileA
GetStdHandle
GetFileSize
DeleteFileW
ReadFile
GetComputerNameA
Sleep
OpenFileMappingA

comctl32

CreateToolbar
DrawStatusText
ImageList_DragEnter
ImageList_GetIconSize
CreateMappedBitmap
ImageList_DrawEx
CreateToolbarEx
MenuHelp
ImageList_Destroy
ImageList_EndDrag
CreateStatusWindowW
ImageList_Draw
ImageList_Copy
InitCommonControls
CreateUpDownControl
ImageList_LoadImageA
ImageList_LoadImageW
DllGetVersion
ImageList_GetIcon
ImageList_Add
ImageList_Create
CreateStatusWindow
ImageList_AddIcon
DrawStatusTextW

Sections

.text
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 3KB - Virtual size: 18.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

18154cc1b8ae3e84058d8411b046ecd8

Headers

File Characteristics

Imports

gdi32

kernel32

comctl32

Sections

.text Size: 25KB - Virtual size: 24KB

.data Size: 32KB - Virtual size: 31KB

.tls Size: 3KB - Virtual size: 18.7MB

.rdata Size: 4KB - Virtual size: 7KB

.idata Size: 2KB - Virtual size: 1KB

.text
Size: 25KB - Virtual size: 24KB

.data
Size: 32KB - Virtual size: 31KB

.tls
Size: 3KB - Virtual size: 18.7MB

.rdata
Size: 4KB - Virtual size: 7KB

.idata
Size: 2KB - Virtual size: 1KB