f922dfcae3c78e0ccb9af7bc40f8a127_JaffaCakes118

General

Target

f922dfcae3c78e0ccb9af7bc40f8a127_JaffaCakes118
Size

274KB
MD5

f922dfcae3c78e0ccb9af7bc40f8a127
SHA1

7c926d3c5549802e1569474059b9a34c5b8e493d
SHA256

7fe706aab8099dd056af4403b5fe90a70ea61e8ce2c5b9d5f3435b55832e60be
SHA512

d3c6502e5fff374ae73ee4f91707221452c7a305dff00500addc639f4865cb358e01209e30099c132b6a9b97216a3d593dc18f0a08b95ebdc0529dbbcd612689
SSDEEP

6144:rL++5L0S92a4r0y0vN6O9aE2xh0DYX9vPcTIMwM:rFSSoCAOL2xh0DYXtPCzw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f922dfcae3c78e0ccb9af7bc40f8a127_JaffaCakes118

Files

f922dfcae3c78e0ccb9af7bc40f8a127_JaffaCakes118
.exe windows:4 windows x86 arch:x86

349a4f9c31007d8be62c6461ae50cd3d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SetROP2
SelectClipPath
CloseFigure
GetGraphicsMode
PolyBezierTo
EndPath
CreatePatternBrush
GetClipBox
SetGraphicsMode
IntersectClipRect
GetStockObject
LineTo
BeginPath
SetBrushOrgEx
GetWorldTransform
Rectangle
FillPath
PolylineTo
MoveToEx
PolyDraw

setupapi

CM_Get_Depth
SetupDiGetDeviceRegistryPropertyW
CMP_WaitNoPendingInstallEvents
CM_Get_DevNode_Status

kernel32

GlobalAddAtomW
SetLastError
GetLocalTime
TerminateProcess
GetVersion
GetProcessHeap
HeapAlloc
GetComputerNameA
GetCurrentThread
CloseHandle
GlobalMemoryStatus
TlsSetValue
TlsAlloc
GetModuleHandleW
RaiseException
HeapFree
EnumResourceNamesA
GetTickCount
GetStartupInfoA
GetDiskFreeSpaceA
GetFileType
GetModuleFileNameA
TlsGetValue
QueryPerformanceCounter
GetSystemTimeAsFileTime
DeviceIoControl
OutputDebugStringW
GetVersionExA
SetUnhandledExceptionFilter
TlsFree
GetStdHandle
SetHandleCount
RtlUnwind
GetCommandLineA
GetCurrentProcess
GetCurrentProcessId
InterlockedExchange

Sections

.text
Size: 146KB - Virtual size: 277KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 124KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

349a4f9c31007d8be62c6461ae50cd3d

Headers

File Characteristics

Imports

gdi32

setupapi

kernel32

Sections

.text Size: 146KB - Virtual size: 277KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 124KB - Virtual size: 124KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 146KB - Virtual size: 277KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 124KB - Virtual size: 124KB

.rsrc
Size: 1024B - Virtual size: 4KB