88158c1ebf26cc8b7ac930258281e2d0_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

88158c1ebf26cc8b7ac930258281e2d0_JaffaCakes118
Size

546KB
MD5

88158c1ebf26cc8b7ac930258281e2d0
SHA1

48c5834a72b7e3f27d2d3e04eb772b135e897b35
SHA256

ee15dbd49fa666011a86468c0ce44efd8d186a3a3b3381df8c80710057a4e579
SHA512

0364a0e4692709a17fd548f7777b1ba2afbd3720888a68a022ab6c8af5acdf8a81b74ba260ecc27cd19c983aae6d09ee8ae36560a1ab353aa2ad94b5a58b5e60
SSDEEP

12288:nJwDA3c9sT7Xt+v86rVvkpBPns3TNW+RI4UV7WxylESfZ:NLT88k+Pn+/24UVC0xZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
88158c1ebf26cc8b7ac930258281e2d0_JaffaCakes118

Files

88158c1ebf26cc8b7ac930258281e2d0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0c4b58431b0082e4d2d399806f1b2d99

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetBitmapBits
CopyMetaFileA
GetClipBox
BeginPath
AddFontMemResourceEx
CreateSolidBrush
DeleteObject
RestoreDC
GetPixel
ClearBrushAttributes
BitBlt
AbortPath
GetCurrentPositionEx
AddFontResourceExA
CloseFigure
GetDCOrgEx
AddFontResourceW
ExtTextOutA
CloseMetaFile
GetPixel
CancelDC
GetBrushOrgEx
ClearBitmapAttributes
ExcludeClipRect
AddFontResourceA
AddFontResourceExW

comctl32

ImageList_Remove
ImageList_Destroy
ImageList_Read
ImageList_DragLeave
ImageList_DrawIndirect
ImageList_DragMove
ImageList_BeginDrag
ImageList_LoadImageA
ImageList_GetImageRect
ImageList_GetIcon
ImageList_ReplaceIcon
ImageList_EndDrag
ImageList_AddMasked
ImageList_Draw
ImageList_GetImageInfo
ImageList_GetImageCount
ImageList_Copy
ImageList_GetIconSize
ImageList_LoadImage
ImageList_DragEnter
ImageList_DragShowNolock
ImageList_Create
ImageList_GetDragImage
ImageList_DrawEx
ImageList_Replace
ImageList_Merge

kernel32

FindAtomA
GlobalFree
CreateProcessA
CopyFileExW
SetLastError
WriteFile
ReadConsoleA
ExitThread
GetComputerNameA
CreateDirectoryA
GetFileSize
GetCommandLineA
CopyFileA
GetStdHandle
GetCPInfo
CopyFileExA
GetConsoleMode
FindFirstFileA

user32

DrawIcon
IsWindow
AlignRects
GetMenu
CalcMenuBar
InsertMenuA
CreateIcon
BlockInput
CloseWindow
CopyIcon
LoadMenuA
CopyImage
CopyRect
AppendMenuW
GetDC
GetCursor
DrawTextW

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 53KB - Virtual size: 184KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 530B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0c4b58431b0082e4d2d399806f1b2d99

Headers

File Characteristics

Imports

gdi32

comctl32

kernel32

user32

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 53KB - Virtual size: 184KB

.rsrc Size: 1024B - Virtual size: 530B

.reloc Size: - Virtual size: 1KB

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 53KB - Virtual size: 184KB

.rsrc
Size: 1024B - Virtual size: 530B

.reloc
Size: - Virtual size: 1KB