bd7f713dda6e8f2315c4088560700796_JaffaCakes118

General

Target

bd7f713dda6e8f2315c4088560700796_JaffaCakes118
Size

97KB
MD5

bd7f713dda6e8f2315c4088560700796
SHA1

90aff8d5e3c6d8d4ba4a992ce23db9abec152818
SHA256

c580ebf1c7584e3e1496c670eb7afd4c365e896cfd740848211804241c9beeac
SHA512

52f9c5e37c3487362bec100c7c5f8917fff45acee74b396e2f963ac125a195d6f3387597d9dd5ad850524e5078798647abcafc5652444a22fb7a01e5c02ca2ae
SSDEEP

3072:Tyn7+XAFG1Jx/F8kmnY+/HBOLM6or78l76jrA:27tFWh8VBOLM6Y7lj0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bd7f713dda6e8f2315c4088560700796_JaffaCakes118

Files

bd7f713dda6e8f2315c4088560700796_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5f48490b8747dfed1d3dd1add9278062

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsDebuggerPresent
DeleteFileA
RemoveDirectoryA
lstrcmpiW
GetConsoleOutputCP
CopyFileA
GlobalFindAtomW
GetACP
GetOEMCP
GetModuleHandleA
MulDiv
GetCommandLineW
GetModuleHandleW
DeleteFileW
GetUserDefaultLangID
GetCurrentThreadId
GetCommandLineA
lstrlenW
GetProcessHeap
GetCurrentProcess
GetTickCount
lstrlenA
lstrcmpA
GetCurrentThread
GetLastError
GlobalFindAtomA
GetThreadLocale
SetLastError
lstrcmpiA
SetCurrentDirectoryA
GetVersion
GetCurrentProcessId
VirtualAlloc

user32

CharNextA

gdi32

SetDIBColorTable
SetBrushOrgEx
SetViewportOrgEx
GetDeviceCaps
GetDIBColorTable
DPtoLP
BeginPath
EndPage
IntersectClipRect
PatBlt
MaskBlt
SetTextColor
CreatePatternBrush
RestoreDC
PtVisible
GetClipBox
OffsetViewportOrgEx
ScaleViewportExtEx
GetStockObject
EndDoc
RectVisible
GetDCOrgEx
PlayEnhMetaFile
EndPath
GetPixel
SaveDC
CreatePen
SetMapMode
GetCharWidth32A
SetStretchBltMode
SetBkColor
GetEnhMetaFilePaletteEntries
DeleteObject
SelectObject
StretchBlt
SetWindowExtEx
GetTextMetricsA
MoveToEx
CreateCompatibleBitmap
SelectPalette
SetBkMode
CreateBitmap
LPtoDP
StartPage
Chord
UnrealizeObject
SelectClipPath
DeleteDC
BitBlt
GetPaletteEntries
LineTo
CreateRectRgn
SetROP2

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 104KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5f48490b8747dfed1d3dd1add9278062

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 14KB - Virtual size: 13KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 104KB - Virtual size: 103KB

.rsrc Size: 16KB - Virtual size: 15KB

.text
Size: 14KB - Virtual size: 13KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 104KB - Virtual size: 103KB

.rsrc
Size: 16KB - Virtual size: 15KB