a90e056656e3b1e578bb0848643677d3_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a90e056656e3b1e578bb0848643677d3_JaffaCakes118
Size

211KB
MD5

a90e056656e3b1e578bb0848643677d3
SHA1

91432d6412758ba00e322b0356e2286a5e7eccd4
SHA256

30158859305e01d1ea75913d15d26409cd0378802b000ebc39fa5bf1fd1153db
SHA512

502bc104b7b72bc69cf332d5acd8e6e9e76b7d1db8b0c6e2f4de7e0b6dec68aa02b7829be8dcb3c15605962ba23997ef844215292d4977ffb3ba364a2387fc9e
SSDEEP

3072:FJgOig4U8d2R8pML3TBvdcFcFGfwHzJ7k4o93S0V17:og/pSMLDPcAGARkx9n3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a90e056656e3b1e578bb0848643677d3_JaffaCakes118

Files

a90e056656e3b1e578bb0848643677d3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7668122d4fc0a00cf5b16212e3513016

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

AbortDoc
BeginPath
BitBlt
CreateDIBPatternBrushPt
CreateEllipticRgn
CreateHalftonePalette
DeleteDC
EndDoc
EnumFontFamiliesA
ExtFloodFill
GetBitmapBits
GetCharacterPlacementA
GetCurrentPositionEx
GetEnhMetaFileHeader
GetMetaFileBitsEx
GetObjectW
GetStockObject
GetViewportOrgEx
GetWindowExtEx
LineTo
SelectClipPath
SetWorldTransform
StretchBlt
TranslateCharsetInfo
UnrealizeObject

user32

CharLowerA
CreateWindowExA
DispatchMessageA
EnableMenuItem
EnumWindows
FrameRect
GetActiveWindow
GetClassInfoA
GetClassNameA
GetMessageA
GetSubMenu
GetSystemMenu
GetWindowPlacement
IsZoomed
LoadBitmapA
MapWindowPoints
MessageBeep
OpenClipboard
ScrollWindow
ShowCursor

kernel32

ExitProcess
FileTimeToLocalFileTime
GetCPInfo
GetConsoleOutputCP
GetCurrentProcess
GetDiskFreeSpaceA
GetDriveTypeA
GetFileSize
GetFullPathNameA
GetLocalTime
GetPrivateProfileStringA
GetProcAddress
GetShortPathNameA
GetSystemTimeAsFileTime
GlobalAddAtomA
HeapAlloc
InitializeCriticalSection
InterlockedCompareExchange
InterlockedDecrement
IsValidCodePage
LeaveCriticalSection
LoadLibraryW
QueryPerformanceCounter
SetHandleCount
SetThreadPriority
SystemTimeToFileTime
WaitForMultipleObjects

Sections

.text
Size: 89KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 99KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

TdfWRUbg
Size: 2KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

7668122d4fc0a00cf5b16212e3513016

Headers

File Characteristics

Imports

gdi32

user32

kernel32

Sections

.text Size: 89KB - Virtual size: 88KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 99KB - Virtual size: 99KB

.rsrc Size: 18KB - Virtual size: 17KB

TdfWRUbg Size: 2KB - Virtual size: 120KB

.text
Size: 89KB - Virtual size: 88KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 99KB - Virtual size: 99KB

.rsrc
Size: 18KB - Virtual size: 17KB

TdfWRUbg
Size: 2KB - Virtual size: 120KB