14ee0f0e4fcd58730561e823b4efc9c9_JaffaCakes118

General

Target

14ee0f0e4fcd58730561e823b4efc9c9_JaffaCakes118
Size

173KB
MD5

14ee0f0e4fcd58730561e823b4efc9c9
SHA1

c0c9dd1be7396c1105e33c385e69e209a9451be8
SHA256

da20dc4cc6882c15c06a07ebde62dd307e4e29a6187bbc53fe31121695de3075
SHA512

79b4b1c3f1c0bb00d64c16c7e780572f8a6ff8e085f9cb3845d08e642e5797ceaa6e1fca839f99d38dbf9d491d870fc6f839d6dafbd56a629be66651f0f4dfdf
SSDEEP

3072:tzkiY92ESa3R737TmqyMsz//jR7OwBSeBnVZvbpUx+NBjO8:te13R737Tf+jR7OwRnVBW89

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
14ee0f0e4fcd58730561e823b4efc9c9_JaffaCakes118

Files

14ee0f0e4fcd58730561e823b4efc9c9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d3ab17129107da6435bdd00cc29ab89e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

CM_Get_Depth
SetupDiGetDeviceRegistryPropertyW
CMP_WaitNoPendingInstallEvents
CM_Get_DevNode_Status

kernel32

GetEnvironmentStringsW
HeapCreate
GlobalAddAtomW
FreeEnvironmentStringsW
GetEnvironmentStrings
IsBadCodePtr
WriteFile
FreeEnvironmentStringsA
GetStartupInfoA
WideCharToMultiByte
GetModuleFileNameA
FatalAppExitA
HeapReAlloc
GetEnvironmentVariableA
GetOEMCP
VirtualFree
SetConsoleCtrlHandler
VirtualAlloc
EnumResourceNamesA
GetCPInfo
GetFileType
HeapDestroy
UnhandledExceptionFilter
GetDateFormatW
GetACP
SetHandleCount
IsBadWritePtr
SetUnhandledExceptionFilter
GetStdHandle
SetFilePointer
IsBadReadPtr
GetCurrentThread

gdi32

GetWorldTransform
GetGraphicsMode
PolyBezierTo
PolylineTo
SetGraphicsMode
FillPath
IntersectClipRect
Rectangle
SetBrushOrgEx
GetStockObject
CreatePatternBrush
MoveToEx
GetClipBox
BeginPath
SelectClipPath
SetROP2
EndPath
CloseFigure
LineTo
PolyDraw

Sections

.text
Size: 91KB - Virtual size: 487KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 77KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d3ab17129107da6435bdd00cc29ab89e

Headers

File Characteristics

Imports

setupapi

kernel32

gdi32

Sections

.text Size: 91KB - Virtual size: 487KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 77KB - Virtual size: 77KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 91KB - Virtual size: 487KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 77KB - Virtual size: 77KB

.rsrc
Size: 1024B - Virtual size: 4KB