0bc5b87a0fcbda26a9d281dcb350ad7c_JaffaCakes118

General

Target

0bc5b87a0fcbda26a9d281dcb350ad7c_JaffaCakes118
Size

132KB
MD5

0bc5b87a0fcbda26a9d281dcb350ad7c
SHA1

b8972cd7adc7ad4311bf36ecd729fc2cf0c53a96
SHA256

ee274c2fc4b08bba289c8e705c9a98f3b80196409784a53625b4fb0aa7a9a02c
SHA512

e4bc0f12678214dfafffa115600dba7c8a29f0581e34f222b5480a817a249e047517cc41474a9b7cf02d84acd14ba80e6e1a0be8521095431338150c55d67e1e
SSDEEP

1536:53UHO7odSEhY7GxO/DpNho9riNuipGUVPc2XkyE1TXmJek665YrrTQ6FLU/9:mHO7Le4DMxMUM4J3K6c6R

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0bc5b87a0fcbda26a9d281dcb350ad7c_JaffaCakes118

Files

0bc5b87a0fcbda26a9d281dcb350ad7c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d6f22c84c3d955b7694d2372fd33247c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CharNextA

gdi32

PtVisible
DeleteDC
SetTextColor
CreatePatternBrush
GetCharWidth32A
SetColorSpace
CreateCompatibleBitmap
SetStretchBltMode
RestoreDC
CreateBitmap
CreateRectRgn
Rectangle
LineTo
SetROP2
GetEnhMetaFilePaletteEntries
SetBkMode
SetBkColor
SelectClipPath
ScaleViewportExtEx
BeginPath
GetPixel
SetMapMode
ExcludeClipRect
GetDCOrgEx
EndPage
MoveToEx
MaskBlt
BitBlt
UnrealizeObject
SaveDC
SetBrushOrgEx
StretchBlt
EndDoc
GetTextMetricsA
GetStockObject
RectVisible
IntersectClipRect
GetDeviceCaps
Chord
SelectPalette
DPtoLP
PlayEnhMetaFile
StartPage
GetDIBColorTable
GetPaletteEntries
GetBrushOrgEx
SetWindowExtEx

kernel32

GetCurrentProcess
lstrcmpA
GetUserDefaultLangID
CopyFileA
GetConsoleOutputCP
GetCommandLineW
GetModuleHandleW
GetCurrentThread
GetProcessHeap
GetCurrentProcessId
lstrlenA
GlobalFindAtomW
VirtualAlloc
GetTickCount
DeleteFileW
GlobalFindAtomA
lstrlenW
GetCurrentThreadId
GetModuleHandleA
SetLastError
DeleteFileA
GetCommandLineA
GetACP
GetVersion
lstrcmpiW
IsDebuggerPresent
lstrcmpiA
MulDiv
SetCurrentDirectoryA
RemoveDirectoryA
GetLastError
GetThreadLocale

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 101KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d6f22c84c3d955b7694d2372fd33247c

Headers

File Characteristics

Imports

user32

gdi32

kernel32

Sections

.text Size: 11KB - Virtual size: 10KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 101KB - Virtual size: 101KB

.rsrc Size: 16KB - Virtual size: 15KB

.text
Size: 11KB - Virtual size: 10KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 101KB - Virtual size: 101KB

.rsrc
Size: 16KB - Virtual size: 15KB