b262be514f59e59d040a6b7eb07dff68_JaffaCakes118

General

Target

b262be514f59e59d040a6b7eb07dff68_JaffaCakes118
Size

134KB
MD5

b262be514f59e59d040a6b7eb07dff68
SHA1

0da0e704efbaba1bdfd333c7367fb157d74ef958
SHA256

d3d1fa2b13e8eb70cdc71a0a908e10e3101522f017f62e62a68dda504af2adbd
SHA512

f24e392d69e76559103de20f5a7afbd339aa1090220629c597aa0c7d3afa10f47300b50e89bff44e7b313ae78975567333636331c0d486187612537e42dfdac4
SSDEEP

3072:irCpO4dVwwnYs6hHO+GcSSCQbvalTeFxVuY96iY+/soH:vpOLFhuH0CxeWYH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b262be514f59e59d040a6b7eb07dff68_JaffaCakes118

Files

b262be514f59e59d040a6b7eb07dff68_JaffaCakes118
.exe windows:4 windows x86 arch:x86

09de32e3e8a3bfaa685c478ecec41649

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CharNextA

gdi32

PtVisible
LPtoDP
RestoreDC
CreatePen
GetDeviceCaps
CreatePatternBrush
GetEnhMetaFilePaletteEntries
SelectObject
CreateBitmap
GetTextMetricsA
MaskBlt
StretchBlt
SetWindowExtEx
SetTextColor
EndPage
DPtoLP
ExcludeClipRect
GetDIBColorTable
StartPage
BitBlt
SelectPalette
PlayEnhMetaFile
Chord
SaveDC
IntersectClipRect
SetStretchBltMode
SetMapMode
SetBkMode
SetDIBColorTable
GetCharWidth32A
SetBkColor
DeleteObject
SetBrushOrgEx
UnrealizeObject
BeginPath
CreateCompatibleBitmap
CreateRectRgn
GetClipBox
PatBlt
MoveToEx
SetColorSpace
DeleteDC
SelectClipPath
GetBrushOrgEx
Rectangle
SetROP2
GetPaletteEntries
ScaleViewportExtEx
GetPixel
RectVisible

kernel32

GetThreadLocale
SetLastError
GetCurrentProcess
GetConsoleOutputCP
GetCurrentThread
GetUserDefaultLangID
GetCurrentThreadId
GlobalFindAtomA
GlobalFindAtomW
GetCommandLineW
RemoveDirectoryA
IsDebuggerPresent
GetVersion
lstrlenW
DeleteFileW
GetTickCount
lstrlenA
DeleteFileA
CopyFileA
MulDiv
GetProcessHeap
GetModuleHandleW
GetCurrentProcessId
GetLastError
lstrcmpiA
SetCurrentDirectoryA
GetModuleHandleA
GetACP
GetCommandLineA
lstrcmpiW
lstrcmpA
VirtualAlloc

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 101KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

09de32e3e8a3bfaa685c478ecec41649

Headers

File Characteristics

Imports

user32

gdi32

kernel32

Sections

.text Size: 13KB - Virtual size: 12KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 101KB - Virtual size: 101KB

.rsrc Size: 16KB - Virtual size: 15KB

.text
Size: 13KB - Virtual size: 12KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 101KB - Virtual size: 101KB

.rsrc
Size: 16KB - Virtual size: 15KB