bb01227c26bd0479f1d40a0c3cf29477_JaffaCakes118

General

Target

bb01227c26bd0479f1d40a0c3cf29477_JaffaCakes118
Size

137KB
MD5

bb01227c26bd0479f1d40a0c3cf29477
SHA1

e9e8a92a13a9b56c1eb8cb3747a94939b9c140c9
SHA256

58b11e55d3cf6e56f185dd540b3fa1c2d52997dcac536ec824d411fed19ca3aa
SHA512

672022bc632db89d9d2f959a267bf30b00dbcab86088c3a2b3636f0002e03ea70046a9630ae5ee7d53384e4c7b3b1a0c5f4f8a1c38dc18ab2e0d4db73d2ed06c
SSDEEP

3072:dIfwlbIr/7XOtBh5s8Ef+/uOV28TxgQZ:dIf0LtP9DV28i4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bb01227c26bd0479f1d40a0c3cf29477_JaffaCakes118

Files

bb01227c26bd0479f1d40a0c3cf29477_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3315ff94273424ea220ef75a0ae9fd41

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetThreadLocale
SetLastError
IsDebuggerPresent
RemoveDirectoryA
GetModuleHandleA
lstrlenA
GetCurrentThread
lstrcmpiW
lstrcmpiA
DeleteFileW
GetCommandLineW
GetCurrentThreadId
GetLastError
GetTickCount
GetProcessHeap
CopyFileA
GetConsoleOutputCP
GetCurrentProcess
GetOEMCP
DeleteFileA
GetVersion
GetCurrentProcessId
GetUserDefaultLangID
GlobalFindAtomA
GetModuleHandleW
lstrcmpA
GetACP
GetCommandLineA
MulDiv
lstrlenW
SetCurrentDirectoryA
GlobalFindAtomW
VirtualAlloc

user32

CharNextA

gdi32

SetDIBColorTable
CreatePatternBrush
SetTextColor
DeleteObject
SetROP2
SelectObject
Rectangle
IntersectClipRect
Chord
MoveToEx
GetDIBColorTable
GetEnhMetaFilePaletteEntries
StretchBlt
EndPath
SaveDC
GetDeviceCaps
CreateCompatibleBitmap
GetDCOrgEx
PlayEnhMetaFile
GetTextMetricsA
DPtoLP
GetClipBox
UnrealizeObject
SetMapMode
SetWindowExtEx
SetBkMode
PtVisible
OffsetViewportOrgEx
GetBrushOrgEx
GetStockObject
CreateRectRgn
ScaleViewportExtEx
LPtoDP
PatBlt
ExcludeClipRect
CreateBitmap
SetColorSpace
LineTo
SetBkColor
DeleteDC
EndDoc
GetCharWidth32A
SelectClipPath
BitBlt
RestoreDC
EndPage
SetStretchBltMode
GetPixel
SetBrushOrgEx
SetViewportOrgEx
SelectPalette
MaskBlt
CreatePen
BeginPath

Sections

.text
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 101KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3315ff94273424ea220ef75a0ae9fd41

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 16KB - Virtual size: 16KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 101KB - Virtual size: 101KB

.rsrc Size: 16KB - Virtual size: 15KB

.text
Size: 16KB - Virtual size: 16KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 101KB - Virtual size: 101KB

.rsrc
Size: 16KB - Virtual size: 15KB