6721f6ee0a421482ba8c21ff6ea09571_JaffaCakes118

General

Target

6721f6ee0a421482ba8c21ff6ea09571_JaffaCakes118
Size

208KB
MD5

6721f6ee0a421482ba8c21ff6ea09571
SHA1

d72111a083637ad387de25d184b4cf649ba76bec
SHA256

e3b747c141bf983d2d719bf2c690fc08cb08a96b6154b337559738ab18d3ebe6
SHA512

743696f76a582f51d12ad05763cf65f6be5c3d159f3fb79510c7167ec802628e5bd9326fca9805c2e5172a7a0fa529f222f1348a9b768cd433b4a0a88c2d1162
SSDEEP

3072:zwzgDD0mXq6sJ+TNwguhdfr02HpPAo6/TDv8Az3HfWIy+d9BMRZ:LgBSNwgcdf9ZAZZ3Hu8dbM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6721f6ee0a421482ba8c21ff6ea09571_JaffaCakes118

Files

6721f6ee0a421482ba8c21ff6ea09571_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b614a91e1ae783126d6d3677398df990

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateEventW
DeviceIoControl
ExitThread
FindFirstFileW
FreeEnvironmentStringsA
GetDriveTypeA
GetEnvironmentStringsW
GetFileAttributesW
GetFileSize
GetProcessHeap
GetStartupInfoW
GetSystemDefaultLCID
GlobalFindAtomA
GlobalFree
IsBadReadPtr
IsBadWritePtr
LoadLibraryW
OutputDebugStringA
QueryPerformanceCounter
SetFileAttributesA
SetFilePointer
TlsGetValue
VirtualAlloc
lstrcmpiW

gdi32

CopyEnhMetaFileA
CreateDIBSection
CreateHatchBrush
EnumFontFamiliesExA
GetBkColor
GetSystemPaletteEntries
GetTextFaceW
GetViewportExtEx
OffsetViewportOrgEx
ScaleWindowExtEx
SetBkMode
SetViewportOrgEx
StretchBlt

user32

CallWindowProcA
CharNextA
CreatePopupMenu
DrawFrameControl
EnableMenuItem
GetCapture
GetDCEx
GetDlgItem
GetIconInfo
GetSysColorBrush
GetTopWindow
GetWindowDC
GetWindowRect
GetWindowTextA
InsertMenuA
IsIconic
IsZoomed
RegisterClassA
RegisterWindowMessageA
RemoveMenu
ScrollWindow
SendDlgItemMessageA
SendMessageA
SetActiveWindow
TrackPopupMenu
TranslateMessage
UnregisterClassA

Sections

.text
Size: 88KB - Virtual size: 87KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

I1Ivuvxa
Size: 512B - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b614a91e1ae783126d6d3677398df990

Headers

File Characteristics

Imports

kernel32

gdi32

user32

Sections

.text Size: 88KB - Virtual size: 87KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 98KB - Virtual size: 98KB

.rsrc Size: 18KB - Virtual size: 17KB

I1Ivuvxa Size: 512B - Virtual size: 120KB

.text
Size: 88KB - Virtual size: 87KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 98KB - Virtual size: 98KB

.rsrc
Size: 18KB - Virtual size: 17KB

I1Ivuvxa
Size: 512B - Virtual size: 120KB