85a1eb175fc4c3d2ed5b13032a237331_JaffaCakes118

General

Target

85a1eb175fc4c3d2ed5b13032a237331_JaffaCakes118
Size

35KB
MD5

85a1eb175fc4c3d2ed5b13032a237331
SHA1

f2b31afc3dac782af92833da51255b8862c68d0b
SHA256

1e482b568b9dc5eeb13129d53755a5b18e9c35a02932af71866928fbd5004696
SHA512

f6c5d03425aa3ef48a94995b5f5fe12107a8a8ed54c21712deac1de1225a233bfd3ee7ab3b398fd85cca359c48bf68e716073f123122fb0ea26df55188f8af91
SSDEEP

768:vA4xXvifNnqujxk4ZzFllof/C3Z1kO6kfvMxssInBfIx5m5n3Brs:vAxNnqujxFZdDp2O6Ovw1IVe523Rs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
85a1eb175fc4c3d2ed5b13032a237331_JaffaCakes118

Files

85a1eb175fc4c3d2ed5b13032a237331_JaffaCakes118
.exe windows:6 windows x86 arch:x86

4b88893fdf1fba18046788f46b7ffc6d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualFree
GetProcessHeap
FormatMessageW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCommandLineW
EnterCriticalSection
LoadLibraryA
HeapReAlloc
GetModuleHandleA
SetFilePointer
lstrlenW
LoadLibraryW
HeapDestroy
GetStartupInfoW
ExitProcess
GetModuleHandleA
SleepEx
QueryPerformanceCounter
GetSystemTimeAsFileTime
GetCommandLineW
QueryPerformanceCounter
VirtualFree
SetLastError
VirtualAllocEx
QueryPerformanceCounter
InterlockedIncrement

gdi32

SetTextColor
DeleteDC
CreateCompatibleBitmap
CreateCompatibleBitmap
GetDeviceCaps
TextOutW
MoveToEx
DeleteObject
PatBlt
PatBlt
GetTextExtentPoint32W
GetTextMetricsW
SetTextColor
DeleteObject
GetStockObject
CreateCompatibleBitmap
StretchBlt
CreateFontIndirectW
CreateBitmap
GetObjectW
GetTextExtentPoint32W
BitBlt
SelectObject
CreateCompatibleBitmap
CreateFontIndirectW
SetBkMode
SetBkColor
SetBkMode
DeleteDC
SetTextColor
GetObjectW
MoveToEx
GetTextMetricsW
GetTextExtentPoint32W

user32

GetMessageW
GetDlgItem
GetKeyboardState
ReleaseDC
ShowWindow
ReleaseDC
LoadIconW
CreateWindowExW
DefWindowProcW
SendMessageW
GetDlgItem
GetWindowRect

Sections

.text
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4b88893fdf1fba18046788f46b7ffc6d

Headers

File Characteristics

Imports

kernel32

gdi32

user32

Sections

.text Size: 16KB - Virtual size: 16KB

.rdata Size: 2KB - Virtual size: 72KB

.data Size: 13KB - Virtual size: 16KB

.data Size: 512B - Virtual size: 4KB

.rsrc Size: 2KB - Virtual size: 4KB

.text
Size: 16KB - Virtual size: 16KB

.rdata
Size: 2KB - Virtual size: 72KB

.data
Size: 13KB - Virtual size: 16KB

.data
Size: 512B - Virtual size: 4KB

.rsrc
Size: 2KB - Virtual size: 4KB