65b05a7eddedab64241ebc3f02cde51a_JaffaCakes118

General

Target

65b05a7eddedab64241ebc3f02cde51a_JaffaCakes118
Size

141KB
MD5

65b05a7eddedab64241ebc3f02cde51a
SHA1

ac54a5e30b7079e2c84f62ea2d5a4d88984f4eee
SHA256

c9e87cd42497451f4076bfec9b1fae1f6fd5153c07a4d5e36de086853b89d040
SHA512

bd1d1e270757e1fac9be802c1a3013cf05387e9f1f26d254ffeccff1e5461adab981e2eb4231d2885069a81164363ad2361d692b9a2a6f017e7ba867ab958a50
SSDEEP

1536:s0CCVLtY/cYDtDkGv0S14WkQ4WqG1artmkLPdA0g3nQVZWPWJ/N9nht:sFcLtMcetbv0SWwUIolADnQVM+J/NR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
65b05a7eddedab64241ebc3f02cde51a_JaffaCakes118

Files

65b05a7eddedab64241ebc3f02cde51a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

184542ff9bedcc15d1aa591e69e022b5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CharNextA

gdi32

LineTo
StartPage
SetMapMode
IntersectClipRect
ExcludeClipRect
OffsetViewportOrgEx
SaveDC
DeleteDC
PatBlt
LPtoDP
Chord
SetViewportOrgEx
GetTextMetricsA
GetPaletteEntries
MaskBlt
GetBrushOrgEx
SetDIBColorTable
BeginPath
ScaleViewportExtEx
SelectPalette
SetBkColor
DeleteObject
MoveToEx
PlayEnhMetaFile
SetTextColor
EndPage
UnrealizeObject
SetBkMode
EndDoc
BitBlt
GetStockObject
SetStretchBltMode
CreateRectRgn
SetBrushOrgEx
GetDeviceCaps
GetEnhMetaFilePaletteEntries
EndPath
StretchBlt
CreateBitmap
PtVisible
CreatePen
SetROP2
GetPixel
GetClipBox
SetColorSpace
CreateCompatibleBitmap
SelectClipPath
SetWindowExtEx
GetDIBColorTable
RectVisible
GetDCOrgEx
SelectObject
DPtoLP
Rectangle
RestoreDC

kernel32

GetOEMCP
GetTickCount
GetCurrentProcessId
GetModuleHandleA
MulDiv
CopyFileA
lstrlenA
GetCommandLineW
GetVersion
IsDebuggerPresent
GetACP
GetLastError
lstrcmpiW
GetCurrentThreadId
GlobalFindAtomW
GetProcessHeap
GetModuleHandleW
GetCurrentThread
GetCurrentProcess
lstrcmpA
GetUserDefaultLangID
GlobalFindAtomA
SetCurrentDirectoryA
GetThreadLocale
GetCommandLineA
lstrcmpiA
GetConsoleOutputCP
lstrlenW
DeleteFileA
RemoveDirectoryA
SetLastError
VirtualAlloc
DeleteFileW

Sections

.text
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 104KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

184542ff9bedcc15d1aa591e69e022b5

Headers

File Characteristics

Imports

user32

gdi32

kernel32

Sections

.text Size: 17KB - Virtual size: 17KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 104KB - Virtual size: 104KB

.rsrc Size: 16KB - Virtual size: 15KB

.text
Size: 17KB - Virtual size: 17KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 104KB - Virtual size: 104KB

.rsrc
Size: 16KB - Virtual size: 15KB