439183b8a46be5b697292ed7d6ca60e1_JaffaCakes118

General

Target

439183b8a46be5b697292ed7d6ca60e1_JaffaCakes118
Size

189KB
MD5

439183b8a46be5b697292ed7d6ca60e1
SHA1

aee6e116d9d0891e437255610a1fd2a667933549
SHA256

3332a8ea49e56f3669a3699ab1711fb85a57f4845b8e93886d77237f36ffc76a
SHA512

8522415f8c9bf2fa8a03e4c95c819e073162f624f31e386f76587c05672da5074ac2918a196b4dda482b92c45ff851c5e37cc3a1fa2ca76837f5ad44cf6e382f
SSDEEP

3072:TC02xdD9TKLhJa9fHtQSixOEXmLhE55nuI4O5G4qpSiHVsvELkBCsH67yQnik:+0oD9TKqftuOE2tCnuI4O5G3AiTL2Csu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
439183b8a46be5b697292ed7d6ca60e1_JaffaCakes118

Files

439183b8a46be5b697292ed7d6ca60e1_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8b5a24ff521a1ba5b8afddad5d225f10

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

CM_Get_Depth
CMP_WaitNoPendingInstallEvents
SetupDiGetDeviceRegistryPropertyW
CM_Get_DevNode_Status

gdi32

GetStockObject
GetWorldTransform
SetROP2
FillPath
CreatePatternBrush
LineTo
SetGraphicsMode
SetBrushOrgEx
CloseFigure
MoveToEx
BeginPath
SelectClipPath
EndPath
PolylineTo
GetClipBox
GetGraphicsMode
PolyBezierTo
Rectangle
IntersectClipRect
PolyDraw

kernel32

GetEnvironmentVariableA
GetStdHandle
GlobalAddAtomW
FreeEnvironmentStringsW
GetFileType
GetStartupInfoA
IsBadWritePtr
FreeEnvironmentStringsA
HeapReAlloc
GetACP
WideCharToMultiByte
GetEnvironmentStringsW
VirtualAlloc
GetCPInfo
UnhandledExceptionFilter
HeapCreate
EnumResourceNamesA
SetUnhandledExceptionFilter
GetOEMCP
GetEnvironmentStrings
GetDateFormatW
FatalAppExitA
GetModuleFileNameA
SetConsoleCtrlHandler
IsBadCodePtr
SetHandleCount
HeapDestroy
IsBadReadPtr
WriteFile
VirtualFree
SetFilePointer
GetCurrentThread

Sections

.text
Size: 100KB - Virtual size: 236KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 85KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8b5a24ff521a1ba5b8afddad5d225f10

Headers

File Characteristics

Imports

setupapi

gdi32

kernel32

Sections

.text Size: 100KB - Virtual size: 236KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 85KB - Virtual size: 84KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 100KB - Virtual size: 236KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 85KB - Virtual size: 84KB

.rsrc
Size: 1024B - Virtual size: 4KB