d7411a5bc96bda3e0589fe6ba60aaf77_JaffaCakes118

General

Target

d7411a5bc96bda3e0589fe6ba60aaf77_JaffaCakes118
Size

503KB
MD5

d7411a5bc96bda3e0589fe6ba60aaf77
SHA1

aa372ebca8b92e446e88e3fd8f39192108d310c5
SHA256

bcf1da2d221d378fd29d335277bdc6a8554687177b32304b8cbb5fd69abdb940
SHA512

ba1f302910613b9a2a6c0946f3a082fdc1ba03c50c4cd8c47da7f16fd531d3897a582c6b8adf3733857d26f11d081efcb575384b0932d9744b19f8f7fbbac05f
SSDEEP

12288:KG66MWNjP4JqeXDNcWgobxGNC+rXHfFR8:B66baJnXDNJwFXfz8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d7411a5bc96bda3e0589fe6ba60aaf77_JaffaCakes118

Files

d7411a5bc96bda3e0589fe6ba60aaf77_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a14f5b855f939c02c6b7a599abb6dbcd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
MultiByteToWideChar
CreateThread
GetVersionExA
UnhandledExceptionFilter
LoadLibraryA
HeapAlloc
GetModuleHandleW
InterlockedCompareExchange
VirtualAlloc
CloseHandle
HeapDestroy
VirtualProtect
GetLastError
VirtualProtect
GetCurrentProcess
HeapDestroy
SetLastError
LocalAlloc
GetModuleFileNameW
InterlockedDecrement
HeapDestroy
lstrcmpiW
GetModuleFileNameW
CreateFileW
GetModuleHandleW
VirtualProtect
VirtualAlloc
lstrlenA
HeapAlloc
UnhandledExceptionFilter
FreeLibrary
HeapAlloc
LeaveCriticalSection
InitializeCriticalSection
VirtualAlloc
GetCurrentProcessId
GetModuleHandleA
HeapFree
InterlockedDecrement
ReadFile
GetLastError
HeapFree
GetCurrentProcess
GetProcAddress
MultiByteToWideChar
FreeLibrary
VirtualProtect
CloseHandle
InitializeCriticalSection
EnterCriticalSection
InterlockedExchange
InterlockedExchange
InitializeCriticalSection
VirtualProtect
GetModuleHandleA

gdi32

SetPixel
MoveToEx
GetWindowExtEx
CreateBitmapIndirect
CreateBitmap
RoundRect
CreateFontIndirectA
SetBkMode
CreateCompatibleDC
SetBrushOrgEx
CreateDIBitmap
StretchBlt
SetPixel
CreateRectRgn
CreateDIBSection
Polygon
CreateDIBitmap
LineTo
LineTo
GetPixel
Rectangle
GetWindowExtEx
GetPixel
CreateSolidBrush
CreatePen
SelectObject
BitBlt
CreateCompatibleDC
LineTo
CreateDIBSection
Rectangle
SelectObject
Rectangle
SetBkMode
SetBrushOrgEx
CreateDIBitmap
SetBrushOrgEx
GetPixel
CreateFontIndirectA
CombineRgn
CreatePen
BitBlt
SelectObject
GetBkColor
SetTextColor
CreatePen
SelectObject
CreateSolidBrush
SetTextColor
GetBkMode
GetBkColor
MoveToEx
CreateBitmap
Ellipse
GetBrushOrgEx

Sections

.text
Size: 498KB - Virtual size: 964KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a14f5b855f939c02c6b7a599abb6dbcd

Headers

File Characteristics

Imports

kernel32

gdi32

Sections

.text Size: 498KB - Virtual size: 964KB

.rdata Size: 3KB - Virtual size: 4KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 498KB - Virtual size: 964KB

.rdata
Size: 3KB - Virtual size: 4KB

.rsrc
Size: 1024B - Virtual size: 4KB