df0acbaade579d8e054635da4ab360db_JaffaCakes118

General

Target

df0acbaade579d8e054635da4ab360db_JaffaCakes118
Size

383KB
MD5

df0acbaade579d8e054635da4ab360db
SHA1

1df477df62922984e3c4b75417103fcf479a74dc
SHA256

439dec37bca29a0598610aba6161808210c8cec2eba5e8dd707a11654776aea1
SHA512

0b4920790c0bf0b1d4c0902dc1b26a9cd69490d967d991c78b36a4fb77481f348deb59082faa0b4dde35e8701fd4e10b35a94e57cae5cd77706614b27ac4edd9
SSDEEP

3072:uhu7lWAw5JVsSUN4EeOlUSfsDkHWcqw4DIpNutsFD4j6m8CXqHbZWd:uhU/asvlmQpHWcqypN1F8Tb6HF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
df0acbaade579d8e054635da4ab360db_JaffaCakes118

Files

df0acbaade579d8e054635da4ab360db_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0cbd295da6b144ea51feec40908716d2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

ArcTo
BitBlt
CreateCompatibleBitmap
CreateICW
EndPage
ExtFloodFill
ExtSelectClipRgn
ExtTextOutA
GetTextAlign
GetWindowOrgEx
LPtoDP
PlayEnhMetaFile
PolyBezierTo
RectVisible
SelectClipPath
StrokeAndFillPath

kernel32

CreateMutexA
FindNextFileA
GetExitCodeProcess
GetFileSize
GetLocaleInfoW
GetPrivateProfileStringA
GetStringTypeExA
GlobalAlloc
HeapCreate
InterlockedExchange
LocalFileTimeToFileTime
MultiByteToWideChar
OpenProcess
SetLastError
TlsGetValue
VirtualAlloc

user32

AdjustWindowRectEx
CallNextHookEx
ClientToScreen
DestroyIcon
DrawMenuBar
EmptyClipboard
FindWindowA
GetClassNameA
GetDC
GetMenuItemCount
GetParent
GetWindowRect
InflateRect
InsertMenuA
IsChild
OpenClipboard
ReleaseCapture
ScreenToClient
SendMessageA
SetActiveWindow
SetCursor
SetForegroundWindow
SetPropA
SetScrollInfo
ShowOwnedPopups
SystemParametersInfoA
TrackPopupMenu
UnregisterClassA
WinHelpA

Sections

.text
Size: 89KB - Virtual size: 89KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

H4mtUHY2
Size: 172KB - Virtual size: 212KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

0cbd295da6b144ea51feec40908716d2

Headers

File Characteristics

Imports

gdi32

kernel32

user32

Sections

.text Size: 89KB - Virtual size: 89KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 100KB - Virtual size: 99KB

.rsrc Size: 18KB - Virtual size: 17KB

H4mtUHY2 Size: 172KB - Virtual size: 212KB

.text
Size: 89KB - Virtual size: 89KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 100KB - Virtual size: 99KB

.rsrc
Size: 18KB - Virtual size: 17KB

H4mtUHY2
Size: 172KB - Virtual size: 212KB