f1e8ed93af37fe3f88153a92d7784ba8_JaffaCakes118

General

Target

f1e8ed93af37fe3f88153a92d7784ba8_JaffaCakes118
Size

280KB
MD5

f1e8ed93af37fe3f88153a92d7784ba8
SHA1

60d4ddbc863a1306467a0af140c85953a699923d
SHA256

9900239f9711005ebafddb0fa2b6ededfca83125d872e0bf7df03401ea256d80
SHA512

79a4c508a1c384012b20ca8ca6a5df4915f427605528d521eb05bfbeb11312e0dfca5ef72a46e7397218341dffa1a6d7fc598bf4f5c0d8f768ad44e0de6f4c46
SSDEEP

6144:MmLzS/UleX6mnPHwJnGJIxUNwYCDZnAsWZOXyNzHXKGVjoBgus9e2:lSqkbvgiIKmYCDK3ZyuzH6Ckgu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f1e8ed93af37fe3f88153a92d7784ba8_JaffaCakes118

Files

f1e8ed93af37fe3f88153a92d7784ba8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2750935a022b9c065ff6b228586a42c3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetHandleCount
GetComputerNameA
GetTickCount
SetUnhandledExceptionFilter
GlobalAddAtomW
DeviceIoControl
GetVersionExA
GetCurrentProcessId
GetModuleHandleW
RaiseException
SetLastError
HeapAlloc
TlsAlloc
GetLocalTime
GetDiskFreeSpaceA
GetStartupInfoA
TlsFree
GlobalMemoryStatus
GetModuleFileNameA
TerminateProcess
TlsGetValue
RtlUnwind
EnumResourceNamesA
TlsSetValue
OutputDebugStringW
CloseHandle
GetCommandLineA
QueryPerformanceCounter
GetFileType
GetVersion
GetProcessHeap
GetCurrentThread
GetStdHandle
GetSystemTimeAsFileTime
GetCurrentProcess
HeapFree
InterlockedExchange

gdi32

BeginPath
Rectangle
SetROP2
LineTo
PolyBezierTo
GetWorldTransform
FillPath
CloseFigure
IntersectClipRect
SelectClipPath
EndPath
SetBrushOrgEx
SetGraphicsMode
PolylineTo
GetClipBox
CreatePatternBrush
MoveToEx
GetStockObject
GetGraphicsMode
PolyDraw

setupapi

CM_Get_Depth
CMP_WaitNoPendingInstallEvents
SetupDiGetDeviceRegistryPropertyW
CM_Get_DevNode_Status

Sections

.text
Size: 145KB - Virtual size: 144KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 131KB - Virtual size: 130KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 388KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2750935a022b9c065ff6b228586a42c3

Headers

File Characteristics

Imports

kernel32

gdi32

setupapi

Sections

.text Size: 145KB - Virtual size: 144KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 131KB - Virtual size: 130KB

.reloc Size: 1024B - Virtual size: 388KB

.text
Size: 145KB - Virtual size: 144KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 131KB - Virtual size: 130KB

.reloc
Size: 1024B - Virtual size: 388KB