bfe0acdeb26276edcd5eec551ac20edb_JaffaCakes118

General

Target

bfe0acdeb26276edcd5eec551ac20edb_JaffaCakes118
Size

740KB
MD5

bfe0acdeb26276edcd5eec551ac20edb
SHA1

7aab25fafe355fdbda177f392a96a237d5f2b7a1
SHA256

e9580e60c6cfcec5d7b5c9f58ef3a3a6fa573450b20abd2fed84f6c710db78fa
SHA512

309dc06b1699d5b1ccb8739bdda1bc179633f4bb8fdd992d06c3619f15a50d9a9306727088ba6a49721c70f835a72145fd4956b80b8fbd4d11f43d3efec051ac
SSDEEP

12288:DeDlpW9QI6/n2PSgsVhOpBlrr8XrbskjYoiDlKypgY0c7/eZS+hBPndGo:DAlI9QZgscrAHpjYoiDUpc7/aLPnd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bfe0acdeb26276edcd5eec551ac20edb_JaffaCakes118

Files

bfe0acdeb26276edcd5eec551ac20edb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9356f51a3e27c9bb07476ae8884f07ff

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetLocalTime
ReadConsoleInputW
InterlockedExchange
GetQueuedCompletionStatus
GetCommandLineA
SetConsoleNlsMode
IsBadHugeWritePtr
RegisterWaitForSingleObject
SetVDMCurrentDirectories
GetConsoleCommandHistoryA
GetDateFormatW
SetThreadLocale
LeaveCriticalSection

user32

IMPSetIMEA
SetMenuItemBitmaps
DrawIconEx
ShowCaret
OemToCharBuffA
SoftModalMessageBox
OpenWindowStationW
LoadStringA
CreateAcceleratorTableW
IsMenu
RegisterDeviceNotificationW
ScrollWindow
CallMsgFilterA

shell32

StrCmpNW
SHPathPrepareForWriteA
ShellExecuteExA

gdi32

EngDeleteClip
PATHOBJ_bEnumClipLines
MaskBlt
GdiValidateHandle
QueryFontAssocStatus
GdiFlush
GetCharWidthW
EngCreateBitmap
EngStretchBltROP
CLIPOBJ_ppoGetPath
EngCreateSemaphore
OffsetWindowOrgEx
SetRectRgn
GdiArtificialDecrementDriver
GetTextCharacterExtra
GdiGetLocalBrush
FONTOBJ_cGetAllGlyphHandles

Sections

.text
Size: 12KB - Virtual size: 9.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 716KB - Virtual size: 712KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

9356f51a3e27c9bb07476ae8884f07ff

Headers

File Characteristics

Imports

kernel32

user32

shell32

gdi32

Sections

.text Size: 12KB - Virtual size: 9.5MB

.data Size: 716KB - Virtual size: 712KB

.rsrc Size: 4KB - Virtual size: 4KB

.idata Size: 4KB - Virtual size: 8B

.text
Size: 12KB - Virtual size: 9.5MB

.data
Size: 716KB - Virtual size: 712KB

.rsrc
Size: 4KB - Virtual size: 4KB

.idata
Size: 4KB - Virtual size: 8B