61090738bfaa56c5a00c3f54cecc18b5_JaffaCakes118

General

Target

61090738bfaa56c5a00c3f54cecc18b5_JaffaCakes118
Size

76KB
MD5

61090738bfaa56c5a00c3f54cecc18b5
SHA1

b599dde742f6b4717cdeee82716a97473ba3f443
SHA256

56911dbe22a128622a04a10bf37e13ca61db32e6dfd07655528f609775d085da
SHA512

03043427364c7e575bb0ee58f0d01ab3db195924b93ff4327e1102c62b2062935d99f613494ac13fd9e6f4ab939b768f975dddaab177e287edb0c51252847983
SSDEEP

1536:WfTf28+zYxBiqMk6I4LAKGRLv6v+z0mdSY+A37feaCMJDmYsLIb4PvYqHB/A0A7:Wj+zYdMk6IQoRLv6v+z0mdSDADeak7dK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
61090738bfaa56c5a00c3f54cecc18b5_JaffaCakes118

Files

61090738bfaa56c5a00c3f54cecc18b5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

37981267bfd87f73cf88cb92cdd593ea

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

TextOutA
RestoreDC
LineTo
MoveToEx
DPtoLP
SetWindowOrgEx
SetViewportExtEx
GetDeviceCaps
SetWindowExtEx
SetMapMode
SaveDC
GetStockObject
SetTextJustification
GetTextExtentPoint32A
DeleteObject
SelectObject
CreateFontIndirectA
GetTextMetricsA
SetViewportOrgEx
ModifyWorldTransform
SetGraphicsMode

user32

BeginPaint
DispatchMessageA
PostQuitMessage
GetClientRect
EndPaint
LoadIconA
DefWindowProcA
LoadCursorA
ShowWindow
RegisterClassExA
CreateWindowExA
TranslateMessage
UpdateWindow
GetMessageA

kernel32

GetStartupInfoA
MultiByteToWideChar
GetEnvironmentStrings
CloseHandle
SetFilePointer
FlushFileBuffers
SetStdHandle
LCMapStringW
LCMapStringA
GetLastError
GetStringTypeA
HeapAlloc
GetStringTypeW
GetModuleHandleA
FreeEnvironmentStringsW
GetCommandLineA
GetVersion
GetProcAddress
LoadLibraryA
RaiseException
ExitProcess
RtlUnwind
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
GetOEMCP
SetHandleCount
WriteFile
GetEnvironmentStringsW
WideCharToMultiByte
GetCPInfo
GetACP
HeapFree
GetFileType
GetStdHandle
HeapCreate

Sections

.text
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 193B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

37981267bfd87f73cf88cb92cdd593ea

Headers

File Characteristics

Imports

gdi32

user32

kernel32

Sections

.text Size: 26KB - Virtual size: 26KB

.rdata Size: 512B - Virtual size: 193B

.data Size: 6KB - Virtual size: 10KB

.idata Size: 2KB - Virtual size: 1KB

.reloc Size: 40KB - Virtual size: 39KB

.text
Size: 26KB - Virtual size: 26KB

.rdata
Size: 512B - Virtual size: 193B

.data
Size: 6KB - Virtual size: 10KB

.idata
Size: 2KB - Virtual size: 1KB

.reloc
Size: 40KB - Virtual size: 39KB