719b9dadbd932a706795df3a172c55ea_JaffaCakes118

General

Target

719b9dadbd932a706795df3a172c55ea_JaffaCakes118
Size

9KB
MD5

719b9dadbd932a706795df3a172c55ea
SHA1

cc5b1853b45e183d29530876ea7e40e2188d1d4b
SHA256

bbd05aa7a28c06eeea4df90aa7ecc7d5c3a6d87f398a19176cd14f3a17566123
SHA512

d9379f8347ef1ad2711df4489139f47139ef60547cd9e9ecfb405c8c6344aa0abb82562710943ab2233b6e7f90f736eb832f8dbd8b52962d7bc8fa8727ff3ca5
SSDEEP

192:WJk3F2koPG9Vk0EbNDkl/kPKCw9ZT0pjRcYlnJPzORWcjtJf:WyM0k0e6ZaiT0JvlnJPzORWcjjf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
719b9dadbd932a706795df3a172c55ea_JaffaCakes118

Files

719b9dadbd932a706795df3a172c55ea_JaffaCakes118
.exe windows:4 windows x86 arch:x86

77ed06e9711fe0450fc5f7ed5c9a3c99

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_ISOLATION
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeLibrary
LoadLibraryA
MoveFileExA
CreateDirectoryA
Sleep
lstrcmpiA
lstrcatA
GetFileSize
GetTempFileNameA
GetSystemDirectoryA
GetTempPathA
GetLastError
CreateMutexA
GetThreadPriority
GetProcAddress
GetCurrentThread
GetStartupInfoA
GetCurrentProcess
CreateProcessA
GetCurrentThreadId
FindFirstFileA
CancelIo
GetModuleFileNameA
GetCurrentProcessId
GetShortPathNameA
CreateFileA
GetTickCount
GetFileInformationByHandle
SetFilePointer
ReadFile
CloseHandle
GetACP
HeapAlloc
GetProcessHeap
HeapFree
DeleteFileA
ExitProcess

user32

GetCaretBlinkTime
DestroyCaret
wsprintfA
GetClipCursor
SetActiveWindow
ClientToScreen
GetCaretPos
GetTopWindow
ClipCursor
GetCursor
GetActiveWindow
GetCapture

gdi32

PathToRegion
CloseFigure
CreateCompatibleBitmap
UnrealizeObject
StrokeAndFillPath
GdiFlush
StrokePath
AbortDoc
EndDoc
WidenPath
FlattenPath
AbortPath
EndPage
GdiGetBatchLimit
CancelDC
GetColorSpace
BeginPath
FillPath
GetBkMode
GetBkColor
GetBrushOrgEx
StartPage
EndPath
CreateCompatibleDC

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 261B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

77ed06e9711fe0450fc5f7ed5c9a3c99

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 4KB - Virtual size: 4KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 512B - Virtual size: 261B

.reloc Size: 1024B - Virtual size: 888B

.text
Size: 4KB - Virtual size: 4KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 512B - Virtual size: 261B

.reloc
Size: 1024B - Virtual size: 888B