0840f5617e9b027b65096e69203ae9ff_JaffaCakes118

General

Target

0840f5617e9b027b65096e69203ae9ff_JaffaCakes118
Size

189KB
MD5

0840f5617e9b027b65096e69203ae9ff
SHA1

7c720ae78d61d2f1d78c957fa07265b94617d4da
SHA256

b0ed78cf39369eeaa1ac921aa7614ade1e8af900dbbac04eaf3c90877766b7a3
SHA512

2c3ba7071245e7659ecf9af0360115c6803a6edcfd336df18203da74887e11df3579595e30d4172f67324e500b0eb4e7b3c29746432f9fb68ee75a10b440c070
SSDEEP

3072:aHjaWs4dFS8rUtmITlBb3tWTUrywket9xaymdRqS/otR2vujyOn/YcIo5:ro1rU5l/jkeXxmbeR4uF/NI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0840f5617e9b027b65096e69203ae9ff_JaffaCakes118

Files

0840f5617e9b027b65096e69203ae9ff_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1275527b17d3555ef7c426a7d62ed7bc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetEnvironmentStringsW
FreeEnvironmentStringsA
GlobalAddAtomW
HeapCreate
SetUnhandledExceptionFilter
WriteFile
HeapReAlloc
GetEnvironmentStrings
GetEnvironmentVariableA
GetStartupInfoA
SetConsoleCtrlHandler
VirtualAlloc
HeapDestroy
GetModuleFileNameA
FatalAppExitA
SetHandleCount
FreeEnvironmentStringsW
GetStdHandle
EnumResourceNamesA
IsBadWritePtr
GetOEMCP
IsBadCodePtr
GetACP
WideCharToMultiByte
SetFilePointer
GetDateFormatW
UnhandledExceptionFilter
GetFileType
IsBadReadPtr
GetCPInfo
VirtualFree
GetCurrentThread

setupapi

CM_Get_Depth
CMP_WaitNoPendingInstallEvents
SetupDiGetDeviceRegistryPropertyW
CM_Get_DevNode_Status

gdi32

FillPath
PolyBezierTo
IntersectClipRect
GetStockObject
CreatePatternBrush
EndPath
SetBrushOrgEx
GetClipBox
SelectClipPath
CloseFigure
PolylineTo
MoveToEx
GetWorldTransform
BeginPath
SetGraphicsMode
Rectangle
LineTo
SetROP2
GetGraphicsMode
PolyDraw

Sections

.text
Size: 99KB - Virtual size: 239KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 85KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1275527b17d3555ef7c426a7d62ed7bc

Headers

File Characteristics

Imports

kernel32

setupapi

gdi32

Sections

.text Size: 99KB - Virtual size: 239KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 85KB - Virtual size: 85KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 99KB - Virtual size: 239KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 85KB - Virtual size: 85KB

.rsrc
Size: 1024B - Virtual size: 4KB