1bedc0c18d5a1442d83cf90c97f1a60e_JaffaCakes118

General

Target

1bedc0c18d5a1442d83cf90c97f1a60e_JaffaCakes118
Size

352KB
MD5

1bedc0c18d5a1442d83cf90c97f1a60e
SHA1

53ce45d70d01a731e8e190803cc85cb0ff9df1c9
SHA256

75c762795c044bc11f05727315448bfd1bd91f95c1c29d34bd94e83eab2d8035
SHA512

430714092e701f8b63820013b84c7fb2bf7b2a0999bb32c76e52a46c1b27c87df953c2bb07ee9b22af3f5558da2d68d240e36dd08804698f65941f02854370c3
SSDEEP

6144:xQCEmV1uwdOzlYtvzHGk+nJRad60v/LTbqMy8IaX:MA1utxYNICoOWMy8t

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1bedc0c18d5a1442d83cf90c97f1a60e_JaffaCakes118

Files

1bedc0c18d5a1442d83cf90c97f1a60e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b061806c7e21a077ae279f57a508f9c2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHGetDesktopFolder
SHGetDiskFreeSpaceExA

gdi32

CombineTransform
GetGraphicsMode
PolylineTo
SelectPalette
CreateRectRgn
CreateDIBitmap
PolyDraw
GetStretchBltMode
GetKerningPairsA
SetMiterLimit
GetNearestPaletteIndex
GetSystemPaletteEntries
SetTextColor
GetSystemPaletteUse
SetDIBitsToDevice
CreateRoundRectRgn
MoveToEx
SetBitmapBits
AnimatePalette

comctl32

ord2

kernel32

SetFileShortNameA
GetProcAddress
LoadLibraryA
GetLogicalDriveStringsA
GetModuleHandleA
GetConsoleTitleA
GetFileType
GetVolumeInformationA
ReadConsoleOutputA
Sleep
GetFileAttributesA
GetStartupInfoA
WriteConsoleOutputAttribute

user32

SubtractRect
IntersectRect
LoadBitmapA
SetCaretPos
MessageBoxIndirectW
PtInRect
WinHelpA
MoveWindow
SetWindowPos
IsWindowVisible
DestroyCaret

msvcrt

_exit
_c_exit
_cexit
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_controlfp
_except_handler3
_XcptFilter

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 116B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.udata
Size: - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 176B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b061806c7e21a077ae279f57a508f9c2

Headers

File Characteristics

Imports

shell32

gdi32

comctl32

kernel32

user32

msvcrt

Sections

.text Size: 7KB - Virtual size: 6KB

.data Size: 512B - Virtual size: 116B

.udata Size: - Virtual size: 48KB

.rdata Size: 84KB - Virtual size: 84KB

.reloc Size: 512B - Virtual size: 176B

.text
Size: 7KB - Virtual size: 6KB

.data
Size: 512B - Virtual size: 116B

.udata
Size: - Virtual size: 48KB

.rdata
Size: 84KB - Virtual size: 84KB

.reloc
Size: 512B - Virtual size: 176B