b9988625bca368371cb965d66c544b71_JaffaCakes118

General

Target

b9988625bca368371cb965d66c544b71_JaffaCakes118
Size

130KB
MD5

b9988625bca368371cb965d66c544b71
SHA1

8a48aece991b4c56a8280eb67cf154f7d2ba34b8
SHA256

51eefd5b516dcca5596e1aac8323859eaccbd6728ff0ada74e8ac070a8ab3803
SHA512

ba4115743b65abbccff4f9511e613834add9826f724ab4b2d7a34cfd1c75241f142b896a6230df0dc52bc86574340fa6979eda8f4c8c46fc26f8450eaeb55e1d
SSDEEP

3072:7KMZ7sXeGSqFm1zqnsIRE9yjvUCSZBOBZUXE91/jSSeYj:+M9nJhHIREsjvU/ZYLO4TF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b9988625bca368371cb965d66c544b71_JaffaCakes118

Files

b9988625bca368371cb965d66c544b71_JaffaCakes118
.exe windows:5 windows x86 arch:x86

2ecd2d24609c05d6ab1afc87eaf7c4b6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SetBitmapDimensionEx
RoundRect
ExcludeClipRect
GetPixel
GetTextMetricsW
SetLayout
CreateBitmapIndirect

comdlg32

GetOpenFileNameA
CommDlgExtendedError
ChooseFontW
ChooseColorW
GetSaveFileNameA

kernel32

RaiseException
AreFileApisANSI
FlushFileBuffers
UnmapViewOfFile
WaitForMultipleObjects
CreateFileMappingW
GlobalUnlock
GetSystemDefaultLangID
SleepEx
GetModuleHandleA
SetHandleCount
GetStringTypeExW

shlwapi

StrCSpnA
StrCmpNIW

user32

DispatchMessageW
CreatePopupMenu
DispatchMessageA
LoadBitmapA
CheckMenuRadioItem
InflateRect
TrackPopupMenuEx
TranslateAcceleratorA
GetWindow
RegisterWindowMessageW
SetWindowPos
AdjustWindowRectEx
CharLowerBuffA

Exports

Exports

?_AnimatePalette@@YGKK@Z

Sections

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vdata
Size: - Virtual size: 205KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2ecd2d24609c05d6ab1afc87eaf7c4b6

Headers

File Characteristics

Imports

gdi32

comdlg32

kernel32

shlwapi

user32

Exports

Exports

Sections

.text Size: 23KB - Virtual size: 22KB

.rdata Size: 10KB - Virtual size: 10KB

.vdata Size: - Virtual size: 205KB

.data Size: 2KB - Virtual size: 2KB

.rsrc Size: 88KB - Virtual size: 88KB

.reloc Size: 5KB - Virtual size: 4KB

.text
Size: 23KB - Virtual size: 22KB

.rdata
Size: 10KB - Virtual size: 10KB

.vdata
Size: - Virtual size: 205KB

.data
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 88KB - Virtual size: 88KB

.reloc
Size: 5KB - Virtual size: 4KB