0e5df11c0ab7868f163bcf4002fecf82_JaffaCakes118

General

Target

0e5df11c0ab7868f163bcf4002fecf82_JaffaCakes118
Size

140KB
MD5

0e5df11c0ab7868f163bcf4002fecf82
SHA1

c707ce5fbac4bef08a816747e6f11b94e307c542
SHA256

521bb8f70f21fadc0cbac4ca927d38d2594ba189b260529e2bfadc6419f73526
SHA512

505d072192a3f657b3177e9256f79f80d6f41298e5d9b743f0c0241cdda967bb053fa106fb3051a6b0d5e3389a49fad61ac5345df5a8852ae833a9b2d300096e
SSDEEP

3072:DMVsAL7QKNwIK8o3Cqu2nd5OL2uVG1+X3HOqQxA5faUIs:DssAw8yS+56hvHu/Aafs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0e5df11c0ab7868f163bcf4002fecf82_JaffaCakes118

Files

0e5df11c0ab7868f163bcf4002fecf82_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1eec2ee529d01a771626ba4c8362ae99

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcmpiW
GetThreadLocale
GetUserDefaultLangID
SetCurrentDirectoryA
DeleteFileA
GlobalFindAtomW
SetLastError
GetModuleHandleA
lstrcmpiA
GetLastError
GetACP
RemoveDirectoryA
GetCurrentProcess
GetCommandLineA
GetModuleHandleW
lstrlenW
GetCurrentThreadId
GetConsoleOutputCP
GetOEMCP
lstrlenA
GetVersion
GetTickCount
MulDiv
GetCurrentThread
CopyFileA
DeleteFileW
GetProcessHeap
lstrcmpA
GetCommandLineW
IsDebuggerPresent
GlobalFindAtomA
GetCurrentProcessId
VirtualAlloc

gdi32

SetTextColor
DPtoLP
PlayEnhMetaFile
RestoreDC
DeleteDC
StretchBlt
MaskBlt
SelectPalette
MoveToEx
DeleteObject
GetBrushOrgEx
Chord
GetDeviceCaps
SetStretchBltMode
GetPixel
SaveDC
PtVisible
CreatePatternBrush
SetColorSpace
LPtoDP
IntersectClipRect
GetCharWidth32A
SetViewportOrgEx
SetROP2
ExcludeClipRect
GetStockObject
EndPage
GetClipBox
UnrealizeObject
Rectangle
GetEnhMetaFilePaletteEntries
SetWindowExtEx
CreatePen
RectVisible
CreateBitmap
EndDoc
SetBkColor
SetBkMode
GetTextMetricsA
SetDIBColorTable
GetDCOrgEx
SetMapMode
GetPaletteEntries
CreateCompatibleBitmap
SelectClipPath
GetDIBColorTable
LineTo
OffsetViewportOrgEx
StartPage
PatBlt
ScaleViewportExtEx
CreateRectRgn
BitBlt
BeginPath

user32

CharNextA

Sections

.text
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 102KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1eec2ee529d01a771626ba4c8362ae99

Headers

File Characteristics

Imports

kernel32

gdi32

user32

Sections

.text Size: 19KB - Virtual size: 18KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 102KB - Virtual size: 101KB

.rsrc Size: 16KB - Virtual size: 15KB

.text
Size: 19KB - Virtual size: 18KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 102KB - Virtual size: 101KB

.rsrc
Size: 16KB - Virtual size: 15KB