0b20753f67bcc8b28f26d2d0278bc0d9_JaffaCakes118

General

Target

0b20753f67bcc8b28f26d2d0278bc0d9_JaffaCakes118
Size

202KB
MD5

0b20753f67bcc8b28f26d2d0278bc0d9
SHA1

c9732e876cd9c0eec9e8c975d7129649e8bb0488
SHA256

228c5a2d6ddb06e4fe54c34d3732b3b220e95b5995146997488bfd9730cdbc30
SHA512

6a58e3eab907bd42fc7d3b62d4cc4378f65ce6a3f8c33ae41c801ad8fa81bccfe044750212c3c1425d29bda1d00ca9606bafc755cf596a344e86ed068df18c61
SSDEEP

3072:0icKJUHZkK7yajx324kL8z9wXghKZSohdbR9Z7eBN8P8B+GzJ0H:0icKJU37ycgj4qghuLR91CpB+G10

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0b20753f67bcc8b28f26d2d0278bc0d9_JaffaCakes118

Files

0b20753f67bcc8b28f26d2d0278bc0d9_JaffaCakes118
.exe windows:5 windows x86 arch:x86

49cfe3350047ee4d3acea095708264bd

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetClipRgn
CreatePalette
GetWorldTransform
SetMapperFlags

kernel32

TzSpecificLocalTimeToSystemTime
DeleteTimerQueue
GetThreadPriorityBoost
SetHandleCount
GetCommMask
RequestWakeupLatency
GetSystemTimeAsFileTime
GetConsoleScreenBufferInfo
IsSystemResumeAutomatic
GetProcessShutdownParameters
GetConsoleProcessList
GetSystemTime
GetThreadUILanguage
GetCommandLineA

winscard

SCardGetStatusChangeA

user32

SetDlgItemInt
IsWindowVisible
GetParent
wvsprintfA
ValidateRect
GetAncestor
GetMessageTime
GetSubMenu

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 76KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 50KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

CODE
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 624B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

49cfe3350047ee4d3acea095708264bd

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

kernel32

winscard

user32

Sections

.text Size: 13KB - Virtual size: 12KB

.rdata Size: 10KB - Virtual size: 9KB

.data Size: 76KB - Virtual size: 79KB

.CRT Size: 50KB - Virtual size: 49KB

CODE Size: 48KB - Virtual size: 47KB

.rsrc Size: 1024B - Virtual size: 624B

.reloc Size: 3KB - Virtual size: 3KB

.text
Size: 13KB - Virtual size: 12KB

.rdata
Size: 10KB - Virtual size: 9KB

.data
Size: 76KB - Virtual size: 79KB

.CRT
Size: 50KB - Virtual size: 49KB

CODE
Size: 48KB - Virtual size: 47KB

.rsrc
Size: 1024B - Virtual size: 624B

.reloc
Size: 3KB - Virtual size: 3KB