b9fa8d06c83923ccda6551c00b35558d_JaffaCakes118

General

Target

b9fa8d06c83923ccda6551c00b35558d_JaffaCakes118
Size

211KB
MD5

b9fa8d06c83923ccda6551c00b35558d
SHA1

e9a326acf6c6b6dfed7b68f9d2662059a90e4489
SHA256

ca5e235a57fc2a3340ed76645ad5e56629349f5f5654c0f1aa6e00fee789463e
SHA512

1de01f8a305798f32284dc46d289b631432f068dba28f51b11353e5d5a6ae519e77db0033e0bab50257713ed9b90a36fa3dff156701f4960459c55bd1bd3a4c1
SSDEEP

3072:GIlKNxu1YayS2lx+ppLH3o0e++KYgUtlyPXEeUzfXj2dAT5ssbFf8gxptjwu:GlNkL6e9HwlyPXQTPbFf8gxpt9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b9fa8d06c83923ccda6551c00b35558d_JaffaCakes118

Files

b9fa8d06c83923ccda6551c00b35558d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2839e936c69c0d72daa58704f34a2c02

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CopyFileA
DeleteFileA
EnterCriticalSection
ExitProcess
FindResourceW
GetCPInfo
GetCurrentProcess
GetCurrentProcessId
GetFileSize
GetLocaleInfoA
GetLocaleInfoW
GetUserDefaultLCID
HeapCreate
IsBadCodePtr
QueryPerformanceCounter
SetFileAttributesA
SetUnhandledExceptionFilter
SizeofResource
WritePrivateProfileStringA

gdi32

AbortDoc
ArcTo
CombineRgn
CreateEnhMetaFileA
CreateFontW
CreateICA
CreatePenIndirect
GetClipBox
GetDIBits
GetNearestPaletteIndex
GetPixel
GetTextExtentPointW
GetViewportExtEx
GetWinMetaFileBits
IntersectClipRect
InvertRgn
OffsetViewportOrgEx
PtVisible
RoundRect
SetBkMode
SetEnhMetaFileBits
SetGraphicsMode
StretchDIBits
TranslateCharsetInfo

user32

EndPaint
GetScrollRange
GetSysColorBrush
GetWindowLongA
GetWindowRect
IntersectRect
MessageBoxA
PeekMessageA
RegisterWindowMessageA
ScrollWindow
SetMenu
SetScrollInfo

Sections

.text
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 99KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

fJgN725s
Size: 2KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

2839e936c69c0d72daa58704f34a2c02

Headers

File Characteristics

Imports

kernel32

gdi32

user32

Sections

.text Size: 88KB - Virtual size: 88KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 99KB - Virtual size: 98KB

.rsrc Size: 18KB - Virtual size: 17KB

fJgN725s Size: 2KB - Virtual size: 120KB

.text
Size: 88KB - Virtual size: 88KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 99KB - Virtual size: 98KB

.rsrc
Size: 18KB - Virtual size: 17KB

fJgN725s
Size: 2KB - Virtual size: 120KB