bcb774eaf40c1ee2764ca5dba3545b22_JaffaCakes118

General

Target

bcb774eaf40c1ee2764ca5dba3545b22_JaffaCakes118
Size

244KB
MD5

bcb774eaf40c1ee2764ca5dba3545b22
SHA1

12eb950b22ae714cc530f64757f1fe41c602cabb
SHA256

4d3dfbe17ebc508268c769306447a8cad81b4282901c9b7e7d9d94ac2f972785
SHA512

126155852dfacf4253d4a010726ab5936192793713d48a2bb752ae31c660cdd02fd462032643d4b3155be02b40287b8f2da49c145dd56a47510ec9a36b73ca48
SSDEEP

6144:VVYWQrznBQwMcWpZITija0Qx8y9YFzXjmHUpRyYYB2+9knLT9sGUXDFV:Krz6wMcWpZIT8QxG2UpRL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bcb774eaf40c1ee2764ca5dba3545b22_JaffaCakes118

Files

bcb774eaf40c1ee2764ca5dba3545b22_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3160a241aff3ee7c46c4577c6ea80c96

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

ExitProcess
FillConsoleOutputAttribute
GetFileSize
GetProcAddress
GetProcessPriorityBoost
GetSystemTimeAdjustment
GetThreadLocale
GlobalGetAtomNameW
HeapCreate
IsBadCodePtr
IsBadStringPtrA
QueryDosDeviceA
QueueUserAPC
ResumeThread
SetConsoleScreenBufferSize
SetErrorMode
UnmapViewOfFile
WaitNamedPipeW
WriteProfileStringA
_lclose
lstrcat

user32

CharToOemW
CharUpperA
DdeKeepStringHandle
DefDlgProcA
DrawTextA
EndDialog
GetClipboardOwner
GetDlgItemTextA
GetTopWindow
GetWindowLongA
IsWindowUnicode
MessageBoxIndirectA
OffsetRect
SendMessageA
SetDlgItemTextA
SetFocus
SetScrollRange
SetShellWindow
UnregisterDeviceNotification
VkKeyScanExW

gdi32

AddFontResourceA
Chord
ColorCorrectPalette
CreateDIBPatternBrush
CreateEllipticRgn
CreateFontW
GetCharWidthA
GetDIBColorTable
GetEnhMetaFileA
GetRasterizerCaps
GetStockObject
GetTextMetricsA
GetWindowExtEx
LineTo
OffsetClipRgn
SetFontEnumeration
SetLayout
SetMapperFlags
SetROP2
SetWinMetaFileBits
StretchBlt

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 222KB - Virtual size: 236KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 224KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3160a241aff3ee7c46c4577c6ea80c96

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 4KB

.data Size: 222KB - Virtual size: 236KB

.rsrc Size: 20KB - Virtual size: 224KB

.text
Size: 512B - Virtual size: 4KB

.data
Size: 222KB - Virtual size: 236KB

.rsrc
Size: 20KB - Virtual size: 224KB