a533856e9acbb32c9ad8e5e961796c62_JaffaCakes118

General

Target

a533856e9acbb32c9ad8e5e961796c62_JaffaCakes118
Size

183KB
MD5

a533856e9acbb32c9ad8e5e961796c62
SHA1

d78dea88bb2b54be4d4f7f149477ddf2095bbcae
SHA256

de5ccf8c482f36d37c63e5bccadfb3b79a64e06bba308e711009dfec32e2836c
SHA512

e2dacb5e93df2490c0dd12aa7db26386d0fb264165c0975224a1a2463db8bf35de1064417117d69da363b9adef22d7869d83d10ff3ed51d61e6836cd9face425
SSDEEP

3072:bEtCBzhPcPKilXL+qqs/JYP4s2stVVt+VZkTvx9Nf3gsQrlHvQQbxzi/fd17akJg:g0lcSUb+q3qP4shrVt0ZOqrqIeXDaCVG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a533856e9acbb32c9ad8e5e961796c62_JaffaCakes118

Files

a533856e9acbb32c9ad8e5e961796c62_JaffaCakes118
.exe windows:4 windows x86 arch:x86

12fb4c287553d0c5069ac4667d50aa55

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SelectObject
DeleteObject
GetTextExtentPointA
GetDeviceCaps
GetTextMetricsA
CreateFontIndirectA

ole32

CoGetMalloc
CoTaskMemFree
CoTaskMemAlloc
CoCreateInstance
StringFromGUID2
CoTaskMemRealloc

msimg32

AlphaBlend
TransparentBlt

kernel32

lstrlenW
MultiByteToWideChar
DeleteCriticalSection
GetThreadLocale
GetCPInfoExW
GetLastError
InterlockedIncrement
TlsGetValue
GetOEMCP
GetFileType
GetEnvironmentStringsW
GetTickCount
WriteFile
GetEnvironmentStrings
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetACP
GetCPInfo
EnumResourceTypesA
WideCharToMultiByte
GetVersionExA
UnhandledExceptionFilter
LeaveCriticalSection
GetEnvironmentStringsW
TlsSetValue
HeapSize
InitializeCriticalSection
GetStdHandle
RaiseException
SetHandleCount
QueryPerformanceCounter
GetLocaleInfoA
EnterCriticalSection
InterlockedExchange
GetStartupInfoA
GetCurrentProcessId

Sections

.text
Size: 107KB - Virtual size: 107KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

12fb4c287553d0c5069ac4667d50aa55

Headers

File Characteristics

Imports

gdi32

ole32

msimg32

kernel32

Sections

.text Size: 107KB - Virtual size: 107KB

.tls Size: 1KB - Virtual size: 1KB

.data Size: 72KB - Virtual size: 72KB

.reloc Size: 1024B - Virtual size: 124KB

.text
Size: 107KB - Virtual size: 107KB

.tls
Size: 1KB - Virtual size: 1KB

.data
Size: 72KB - Virtual size: 72KB

.reloc
Size: 1024B - Virtual size: 124KB