013dfbda7c6d94dd8d729c3b15bc53d4_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

013dfbda7c6d94dd8d729c3b15bc53d4_JaffaCakes118
Size

364KB
MD5

013dfbda7c6d94dd8d729c3b15bc53d4
SHA1

0404eda74b1de75ceb85d3056f8169bd2a4607ea
SHA256

553eb0cfb24c42ad0a8e1978fca7c488016e7ee23dc7516893ce2e4cf9901b73
SHA512

c43b7542422a0b47505ee1f1777300926932f0d40f61264d020650c2bc6d30996f5566de81c0b80a94d1ff3d087f9a55b6a9c4eb2938cb4a38bacf26cbc49dac
SSDEEP

6144:hM3Ia4g7E/Rd1WjfqMsSW9ZgsQ6LEme81Ip8/V+9jeOLzZXcIwXHX:wIt4EELq7p9ZgeLDc8/VkphcI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
013dfbda7c6d94dd8d729c3b15bc53d4_JaffaCakes118

Files

013dfbda7c6d94dd8d729c3b15bc53d4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

eef141beb445ee77328e28010dcd58da

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTimeFormatA
GetConsoleOutputCP
GetPrivateProfileStructA
GetLogicalDrives
GetEnvironmentStrings
CreateFileA
BuildCommDCBAndTimeoutsA
CompareFileTime
GetProcessHeap

msvcrt

_mbsspnp

advapi32

GetSecurityDescriptorControl
GetTrusteeFormA
SetSecurityDescriptorDacl
ImpersonateLoggedOnUser
OpenServiceA

comdlg32

CommDlgExtendedError

comctl32

ord13
ImageList_DrawIndirect

gdi32

OffsetWindowOrgEx
CreatePatternBrush
ArcTo
GetTextExtentExPointA
GetMetaFileBitsEx
GetPath
SetPixel
SelectPalette
SetWinMetaFileBits
CopyMetaFileA
GetStretchBltMode
GetAspectRatioFilterEx
FillPath
DeleteDC
EnumFontFamiliesW
DeleteMetaFile
SetAbortProc
ScaleViewportExtEx
StartDocA
GetStockObject
FrameRgn
GetEnhMetaFileHeader
BitBlt
TextOutW
SetEnhMetaFileBits
AbortDoc
SetBkMode
GetCurrentObject
ChoosePixelFormat
OffsetViewportOrgEx
PaintRgn
GetTextCharset
CreateFontIndirectA
CreateBitmap
GetDeviceCaps
GetTextMetricsW
GetFontLanguageInfo
DPtoLP
CopyMetaFileW
SetBkColor
CreateDIBSection
SetPolyFillMode
LineTo
StretchDIBits
CreateEnhMetaFileA
GetGlyphOutlineA
CreatePenIndirect
UpdateColors
CreateDCW
CreateBrushIndirect
CreateFontW
DescribePixelFormat
SetTextAlign
TranslateCharsetInfo
GetTextExtentPointW
PolyBezier
GetViewportOrgEx
FillRgn
BeginPath
Polyline
SetTextCharacterExtra

Sections

.text
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 288KB - Virtual size: 287KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

eef141beb445ee77328e28010dcd58da

Headers

File Characteristics

Imports

kernel32

msvcrt

advapi32

comdlg32

comctl32

gdi32

Sections

.text Size: 64KB - Virtual size: 63KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 1.4MB

.rsrc Size: 288KB - Virtual size: 287KB

.text
Size: 64KB - Virtual size: 63KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 1.4MB

.rsrc
Size: 288KB - Virtual size: 287KB