b66c5e15eedc6f0f025008da71fcb94d_JaffaCakes118

General

Target

b66c5e15eedc6f0f025008da71fcb94d_JaffaCakes118
Size

272KB
MD5

b66c5e15eedc6f0f025008da71fcb94d
SHA1

9430460cf4735ad4d4f96113bde910e7a1af97da
SHA256

256fcf9c23a1e587826698b3667d99cd2c6b68f4e4d05875c49008803b8f7a19
SHA512

b8a0a847a7450c099f4c26f7c4294182c4639ce3c589faa704f01738c90b208dfd7fd6fccf381b5f7c6f99e4017b1ad3bc3cae2c16ec81707bb27ba9ea544d52
SSDEEP

6144:pqWqCM1pm1K80veMMx45BoW2wrgse1olVAYSHtmhOEO3ATGcU:4WhKpmz7MM8TrhDSqOP3AacU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b66c5e15eedc6f0f025008da71fcb94d_JaffaCakes118

Files

b66c5e15eedc6f0f025008da71fcb94d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4dd6e33750491ad3c6dc2a74a01fb860

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CreatePatternBrush
PolylineTo
EndPath
BeginPath
GetClipBox
PolyBezierTo
SetROP2
MoveToEx
SelectClipPath
LineTo
FillPath
IntersectClipRect
GetStockObject
CloseFigure
Rectangle
SetBrushOrgEx
GetGraphicsMode
SetGraphicsMode
GetWorldTransform
PolyDraw

setupapi

CM_Get_Depth
CMP_WaitNoPendingInstallEvents
SetupDiGetDeviceRegistryPropertyW
CM_Get_DevNode_Status

kernel32

CloseHandle
TlsAlloc
HeapFree
GlobalAddAtomW
SetHandleCount
DeviceIoControl
GlobalMemoryStatus
GetModuleFileNameA
GetDiskFreeSpaceA
GetVersionExA
GetCurrentProcessId
HeapAlloc
GetTickCount
GetModuleHandleW
GetSystemTimeAsFileTime
RaiseException
TlsGetValue
GetStartupInfoA
TlsSetValue
TerminateProcess
EnumResourceNamesA
GetCommandLineA
RtlUnwind
GetCurrentThread
GetStdHandle
GetCurrentProcess
GetLocalTime
QueryPerformanceCounter
OutputDebugStringW
GetProcessHeap
GetFileType
TlsFree
GetVersion
SetLastError
GetComputerNameA
SetUnhandledExceptionFilter
InterlockedExchange

Sections

.text
Size: 136KB - Virtual size: 272KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 131KB - Virtual size: 131KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4dd6e33750491ad3c6dc2a74a01fb860

Headers

File Characteristics

Imports

gdi32

setupapi

kernel32

Sections

.text Size: 136KB - Virtual size: 272KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 131KB - Virtual size: 131KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 136KB - Virtual size: 272KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 131KB - Virtual size: 131KB

.rsrc
Size: 1024B - Virtual size: 4KB