bcc33ec7cdaf25b3d0f2b320e150abf2_JaffaCakes118

General

Target

bcc33ec7cdaf25b3d0f2b320e150abf2_JaffaCakes118
Size

275KB
MD5

bcc33ec7cdaf25b3d0f2b320e150abf2
SHA1

c979cb6fb1248a6d4512232af8b5d3fb3ff405ac
SHA256

826c624e0c0c705e558df049f4c14071cb6a6d74de79efceffb2bc36f4e15156
SHA512

ce4c8955824bb1d0fc29c310f110747948268f4f5251ae0807dfbe6336be5376e0b545c667b4eedbf2f88ce29852c13e17b67164887756769a3a7e84616b90f7
SSDEEP

6144:JUnsQWGRPWEwlXKaIy7gQaXoS4DoTnn57dgcRr:J/ntFKaIyRAoqnn5pgc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bcc33ec7cdaf25b3d0f2b320e150abf2_JaffaCakes118

Files

bcc33ec7cdaf25b3d0f2b320e150abf2_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a4eb8d082462e4e46b5587cbb702dbb5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

PolyBezierTo
SetROP2
CloseFigure
LineTo
PolylineTo
CreatePatternBrush
MoveToEx
Rectangle
GetGraphicsMode
BeginPath
GetClipBox
IntersectClipRect
SelectClipPath
SetBrushOrgEx
SetGraphicsMode
FillPath
GetStockObject
GetWorldTransform
EndPath
PolyDraw

kernel32

GetStdHandle
FreeEnvironmentStringsA
GlobalAddAtomW
FatalAppExitA
GetOEMCP
HeapCreate
WideCharToMultiByte
FreeEnvironmentStringsW
SetHandleCount
WriteFile
GetModuleFileNameA
GetEnvironmentStrings
SetFilePointer
GetEnvironmentVariableA
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetEnvironmentStringsW
HeapDestroy
EnumResourceNamesA
IsBadReadPtr
GetCPInfo
VirtualAlloc
IsBadCodePtr
HeapReAlloc
GetDateFormatW
GetStartupInfoA
IsBadWritePtr
GetACP
VirtualFree
SetConsoleCtrlHandler
GetFileType
GetCurrentThread

setupapi

CM_Get_Depth
SetupDiGetDeviceRegistryPropertyW
CMP_WaitNoPendingInstallEvents
CM_Get_DevNode_Status

Sections

.text
Size: 142KB - Virtual size: 273KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 129KB - Virtual size: 129KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a4eb8d082462e4e46b5587cbb702dbb5

Headers

File Characteristics

Imports

gdi32

kernel32

setupapi

Sections

.text Size: 142KB - Virtual size: 273KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 129KB - Virtual size: 129KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 142KB - Virtual size: 273KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 129KB - Virtual size: 129KB

.rsrc
Size: 1024B - Virtual size: 4KB