0a7409726e3c70f530181317e3e9f362_JaffaCakes118

General

Target

0a7409726e3c70f530181317e3e9f362_JaffaCakes118
Size

135KB
MD5

0a7409726e3c70f530181317e3e9f362
SHA1

6263bd835530c20f70bfc418d2f32adf870e1476
SHA256

f530f438a6cdd52bdbeb3c35d3eb8fad5577e599f0ff30e707bcdd6ae7a84655
SHA512

bf8479efb000adfc21955f40c02266b28aa94bb651145c76ea73bca81a00150fadc81d4a945285f4c6e52a1037070236e366670654ad0eac576d9303fcdb3821
SSDEEP

3072:NIaDCeDrg5mfZ9VTamv/TEM0E1KOtgQEbZNoUZ:NWqx/wMLGQEjoUZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0a7409726e3c70f530181317e3e9f362_JaffaCakes118

Files

0a7409726e3c70f530181317e3e9f362_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6c93015d8e86be0969dd5274da25a3fb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersion
GetConsoleOutputCP
lstrlenA
GetThreadLocale
GetLastError
GetModuleHandleW
GetACP
GetTickCount
GetOEMCP
GetCurrentProcess
DeleteFileA
CopyFileA
MulDiv
IsDebuggerPresent
lstrcmpiW
SetCurrentDirectoryA
lstrcmpA
lstrcmpiA
GetProcessHeap
DeleteFileW
GetUserDefaultLangID
GetCommandLineW
GetCurrentProcessId
RemoveDirectoryA
GlobalFindAtomA
GetCurrentThread
SetLastError
lstrlenW
GetModuleHandleA
GlobalFindAtomW
GetCurrentThreadId
GetCommandLineA
VirtualAlloc

gdi32

ScaleViewportExtEx
SetWindowExtEx
Rectangle
CreatePatternBrush
CreateCompatibleBitmap
StretchBlt
RectVisible
ExcludeClipRect
PatBlt
GetDeviceCaps
GetDIBColorTable
DeleteObject
PlayEnhMetaFile
GetClipBox
MoveToEx
LPtoDP
GetCharWidth32A
StartPage
OffsetViewportOrgEx
DeleteDC
CreatePen
SetROP2
SaveDC
EndDoc
SetBkColor
PtVisible
BitBlt
SetBkMode
IntersectClipRect
MaskBlt
SetDIBColorTable
SetMapMode
GetTextMetricsA
EndPath
GetDCOrgEx
GetBrushOrgEx
BeginPath
SetBrushOrgEx
GetPixel
SelectClipPath
GetEnhMetaFilePaletteEntries
SelectPalette
GetStockObject
SelectObject
LineTo
EndPage
DPtoLP
CreateBitmap
GetPaletteEntries
SetTextColor
UnrealizeObject
SetStretchBltMode
CreateRectRgn

user32

CharNextA

Sections

.text
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 101KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6c93015d8e86be0969dd5274da25a3fb

Headers

File Characteristics

Imports

kernel32

gdi32

user32

Sections

.text Size: 15KB - Virtual size: 14KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 101KB - Virtual size: 100KB

.rsrc Size: 16KB - Virtual size: 15KB

.text
Size: 15KB - Virtual size: 14KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 101KB - Virtual size: 100KB

.rsrc
Size: 16KB - Virtual size: 15KB