df2fca915bdf466a2e09c58e0ce1723e_JaffaCakes118

General

Target

df2fca915bdf466a2e09c58e0ce1723e_JaffaCakes118
Size

277KB
MD5

df2fca915bdf466a2e09c58e0ce1723e
SHA1

847a5fa4f6ca59bf697be90d3fbde4f9ba9e8cc1
SHA256

7f5b4a0a3045023cfeeed82fc86906c35b3a6e504cfdc7cf31f5eb8d5ba2e531
SHA512

b532907af85121b0f8ac1623e6b863cd810de92b0f29eb35b149ad1ff36f30321a4a7220f187df900d494a8f976e6147e06bf72f30f5bc718a3701b6dc52de94
SSDEEP

6144:qju+83qugj4Re9WNIlYJKp95ZJUj2iyx9Xq+sf4:qq/augj7YJAjZ9Xhsf4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
df2fca915bdf466a2e09c58e0ce1723e_JaffaCakes118

Files

df2fca915bdf466a2e09c58e0ce1723e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b14ea141835cd2a4790a63cb16881d9a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetHandleCount
GetModuleFileNameA
GlobalAddAtomW
HeapReAlloc
GetEnvironmentVariableA
GetCPInfo
IsBadWritePtr
IsBadReadPtr
GetFileType
GetStdHandle
IsBadCodePtr
GetOEMCP
FreeEnvironmentStringsW
SetFilePointer
HeapCreate
FatalAppExitA
EnumResourceNamesA
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
HeapDestroy
GetDateFormatW
VirtualAlloc
GetStartupInfoA
FreeEnvironmentStringsA
VirtualFree
SetUnhandledExceptionFilter
WriteFile
GetACP
UnhandledExceptionFilter
SetConsoleCtrlHandler
GetCurrentThread

user32

GetMessageA
GetWindowThreadProcessId
CharNextA
CharUpperA
EnumWindows
MessageBoxA
IsWindowVisible
GetWindowTextA
PeekMessageA
LoadStringA
wsprintfW
KillTimer
PostThreadMessageA
DispatchMessageA
SetTimer
wsprintfA

setupapi

CM_Get_Depth
SetupDiGetDeviceRegistryPropertyW
CMP_WaitNoPendingInstallEvents
CM_Get_DevNode_Status

Sections

.text
Size: 149KB - Virtual size: 276KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 124KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b14ea141835cd2a4790a63cb16881d9a

Headers

File Characteristics

Imports

kernel32

user32

setupapi

Sections

.text Size: 149KB - Virtual size: 276KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 124KB - Virtual size: 124KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 149KB - Virtual size: 276KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 124KB - Virtual size: 124KB

.rsrc
Size: 1024B - Virtual size: 4KB