303705b3bd5e4f2b03c055b8e4182ebb_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

303705b3bd5e4f2b03c055b8e4182ebb_JaffaCakes118
Size

216KB
MD5

303705b3bd5e4f2b03c055b8e4182ebb
SHA1

20adbc2769b973a00bf77c66e503db54eacdf876
SHA256

b155530956fb06ed0082e74df8de22c516d146e8066a5b53ee0e7e96766a8d45
SHA512

c387d523b03e9baad09cdf10b8ae3c960316d064c4467e5e1edab88d49feac42ff26c7e99fa1d978ca7627b30c42438923d959065d558f25525c349758395288
SSDEEP

3072:3Bu9D6YcVOwpejeUhLVRfFdXDrBuV4R+fsmtm7OdzOC+msdVp52:3B0PcV+jZhhRfjBSHkmQOdzGdVe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
303705b3bd5e4f2b03c055b8e4182ebb_JaffaCakes118

Files

303705b3bd5e4f2b03c055b8e4182ebb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f31457296e279010a9ed8d526daca9b9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

PatBlt
EndPage
BitBlt
DeleteDC
SetDIBColorTable
SetWindowExtEx
LPtoDP
StartPage
SelectClipPath
GetPaletteEntries
GetBrushOrgEx
ExcludeClipRect
SetColorSpace
SetMapMode
SaveDC
MaskBlt
CreateBitmap
Rectangle
UnrealizeObject
DeleteObject
SetBkMode
SetBrushOrgEx
CreatePatternBrush
SetTextColor
GetDIBColorTable
CreateCompatibleBitmap
GetEnhMetaFilePaletteEntries
RectVisible
SetViewportOrgEx
MoveToEx
PlayEnhMetaFile
GetDeviceCaps
SetStretchBltMode
SetROP2
GetDCOrgEx
BeginPath
GetTextMetricsA
PtVisible
LineTo
Chord
RestoreDC
CreatePen
GetCharWidth32A
EndDoc
SelectObject
SetBkColor
ScaleViewportExtEx
GetStockObject

kernel32

RemoveDirectoryA
lstrcmpA
GetCurrentThreadId
lstrlenW
GetProcessHeap
GetCurrentProcess
GetModuleHandleA
GetCurrentProcessId
GetLastError
DeleteFileA
GetCommandLineW
GetCurrentThread
GetThreadLocale
GetVersion
SetLastError
GetUserDefaultLangID
GetModuleHandleW
GetOEMCP
lstrcmpiA
MulDiv
IsDebuggerPresent
GlobalFindAtomA
CopyFileA
DeleteFileW
GetTickCount
GetCommandLineA
SetCurrentDirectoryA
GetACP
VirtualAlloc
lstrlenA
lstrcmpiW
GetConsoleOutputCP
GlobalFindAtomW

user32

CharNextA

Sections

.text
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 101KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.hrdata
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f31457296e279010a9ed8d526daca9b9

Headers

File Characteristics

Imports

gdi32

kernel32

user32

Sections

.text Size: 15KB - Virtual size: 14KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 101KB - Virtual size: 101KB

.rsrc Size: 16KB - Virtual size: 15KB

.hrdata Size: 80KB - Virtual size: 80KB

.text
Size: 15KB - Virtual size: 14KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 101KB - Virtual size: 101KB

.rsrc
Size: 16KB - Virtual size: 15KB

.hrdata
Size: 80KB - Virtual size: 80KB