69a64b8554971269e607c8272de31978_JaffaCakes118

General

Target

69a64b8554971269e607c8272de31978_JaffaCakes118
Size

275KB
MD5

69a64b8554971269e607c8272de31978
SHA1

8b899573cfa1e333b79d0f9a1cdc3c9d2d95dfc8
SHA256

5a2e1924e2f78cd0776e8028f93af20b500d0ef9a3f59c6ad5d6e1992bd032c5
SHA512

0426d5e4026684c1d9b5df102edbba00ce6420f521a150827fd5d20ef30a6caf49cb8c9d98c47929bd03eeb5a3f3bf1a1ac5054f00c000906baa3f92e13c8cc3
SSDEEP

6144:JUnsQxOYbORWEwlXKaIy7gQaXoS4DoTnn57dgcRr:J/GacFKaIyRAoqnn5pgc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
69a64b8554971269e607c8272de31978_JaffaCakes118

Files

69a64b8554971269e607c8272de31978_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a4eb8d082462e4e46b5587cbb702dbb5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

PolyBezierTo
SetROP2
CloseFigure
LineTo
PolylineTo
CreatePatternBrush
MoveToEx
Rectangle
GetGraphicsMode
BeginPath
GetClipBox
IntersectClipRect
SelectClipPath
SetBrushOrgEx
SetGraphicsMode
FillPath
GetStockObject
GetWorldTransform
EndPath
PolyDraw

kernel32

GetStdHandle
FreeEnvironmentStringsA
GlobalAddAtomW
FatalAppExitA
GetOEMCP
HeapCreate
WideCharToMultiByte
FreeEnvironmentStringsW
SetHandleCount
WriteFile
GetModuleFileNameA
GetEnvironmentStrings
SetFilePointer
GetEnvironmentVariableA
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetEnvironmentStringsW
HeapDestroy
EnumResourceNamesA
IsBadReadPtr
GetCPInfo
VirtualAlloc
IsBadCodePtr
HeapReAlloc
GetDateFormatW
GetStartupInfoA
IsBadWritePtr
GetACP
VirtualFree
SetConsoleCtrlHandler
GetFileType
GetCurrentThread

setupapi

CM_Get_Depth
SetupDiGetDeviceRegistryPropertyW
CMP_WaitNoPendingInstallEvents
CM_Get_DevNode_Status

Sections

.text
Size: 142KB - Virtual size: 273KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 129KB - Virtual size: 129KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a4eb8d082462e4e46b5587cbb702dbb5

Headers

File Characteristics

Imports

gdi32

kernel32

setupapi

Sections

.text Size: 142KB - Virtual size: 273KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 129KB - Virtual size: 129KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 142KB - Virtual size: 273KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 129KB - Virtual size: 129KB

.rsrc
Size: 1024B - Virtual size: 4KB