09cc849bfa99fd1fcd7990fec67d6d28_JaffaCakes118

General

Target

09cc849bfa99fd1fcd7990fec67d6d28_JaffaCakes118
Size

124KB
MD5

09cc849bfa99fd1fcd7990fec67d6d28
SHA1

4087c8c8da5e199e355e7d092c53d4b966f9addc
SHA256

bd41f95750d5d2f1ae3603090a9c42b0badb40d63fdfa230ed773e290417b772
SHA512

7a43bf0ebd5968ad537bf45c436efdc4c5279e53e1b41d963cd4f070fc0de93586f5b34ce20d35881e9f67dbac82b830645e87582aa57703d3595cdd0a4da1ad
SSDEEP

1536:sLv0dovOpUa6PyD12qV3DUi13UeaLelFNx9vUzwg6u2nx/yFZXboC0:sLv0CveOy7VgiyelDb669IDXboC0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
09cc849bfa99fd1fcd7990fec67d6d28_JaffaCakes118

Files

09cc849bfa99fd1fcd7990fec67d6d28_JaffaCakes118
.dll windows:4 windows x86 arch:x86

2913ec81b9a799b3490d7014745489aa

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

FindResourceA
LoadResource
GetLocaleInfoW
GetLastError

gdi32

GetCurrentObject
GetWindowExtEx
LineTo
GetCharWidth32W
GetCharWidth32A
GetTextExtentPoint32W
SetTextAlign
CreateBitmap
SelectObject
GetStockObject
GetObjectA
GetTextMetricsA
DeleteObject
GetTextAlign
GetTextFaceW
GetTextMetricsW
TextOutW
TextOutA
SetTextJustification
GetMapMode
GetDeviceCaps
DeleteDC
SetBkColor
GetTextColor
PolylineTo
PolyBezierTo
MoveToEx
GetGlyphOutlineA
GetTextFaceA
ExtTextOutA
ExtTextOutW
GetCharacterPlacementA
GetCharacterPlacementW
GetObjectType
GetObjectW
GetTextExtentPoint32A
GetTextExtentExPointW
GetTextExtentExPointA
CreateFontA
CreateFontW
CreateFontIndirectA
CreateFontIndirectW

oleaut32

SysFreeString
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayUnaccessData
SafeArrayPtrOfIndex
VariantInit
SysReAllocStringLen

Exports

Exports

EuTu_HTeJ

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 109KB - Virtual size: 429KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2913ec81b9a799b3490d7014745489aa

Headers

File Characteristics

Imports

kernel32

gdi32

oleaut32

Exports

Exports

Sections

.text Size: 11KB - Virtual size: 11KB

.data Size: 109KB - Virtual size: 429KB

.rsrc Size: 1024B - Virtual size: 928B

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 11KB - Virtual size: 11KB

.data
Size: 109KB - Virtual size: 429KB

.rsrc
Size: 1024B - Virtual size: 928B

.reloc
Size: 1KB - Virtual size: 1KB