265648d50695895aeb364024a999cf6c_JaffaCakes118

General

Target

265648d50695895aeb364024a999cf6c_JaffaCakes118
Size

41KB
MD5

265648d50695895aeb364024a999cf6c
SHA1

25f48e207aa7b68cf4b2c6d3da06b3e750f3ba2e
SHA256

042847699cadf2cd5f09ce494a8a4412dbfa39ae890372b262ba2b6d780f9717
SHA512

0d7193fbcb8a631252f0ce69e5f4cdfd8ee5c5df248ed6bda313b68345181830f7dfcfbadd99f5e110a5ee69e0a529383a932819fb36a68633813e50d399784a
SSDEEP

768:m/Vw6Q8kCvWgmGZQ73wenkf0JeI3iTh7J0Z0o3M7Ha+qySeoVDjU5u:m9wx8kCvWX73weJeI3O5qSYyPn0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
265648d50695895aeb364024a999cf6c_JaffaCakes118

Files

265648d50695895aeb364024a999cf6c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a5a625c5df2956bbdc36f0949a59f6a2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

BeginPath
EndDoc
GetBrushOrgEx
SetViewportOrgEx
PatBlt
Chord
SaveDC
SetStretchBltMode
LPtoDP
GetClipBox
GetPaletteEntries
Rectangle
GetStockObject
CreateBitmap
GetCharWidth32A
GetDCOrgEx
GetPixel
SelectObject
CreateRectRgn
MoveToEx
DeleteObject
DeleteDC
GetDeviceCaps
CreatePen
PtVisible
OffsetViewportOrgEx
ExcludeClipRect
StretchBlt
SetBkMode
IntersectClipRect
GetDIBColorTable
RectVisible
SetColorSpace
DPtoLP
ScaleViewportExtEx
SetROP2
GetEnhMetaFilePaletteEntries
PlayEnhMetaFile
CreatePatternBrush
SelectPalette
SetTextColor
EndPage
UnrealizeObject
SelectClipPath
SetMapMode
SetBkColor
EndPath
MaskBlt
RestoreDC
SetDIBColorTable
StartPage
BitBlt

user32

CharNextA

kernel32

GetUserDefaultLangID
lstrlenA
GlobalFindAtomW
SetLastError
GetCurrentProcess
VirtualAlloc
GetCurrentThread
RemoveDirectoryA
GetTickCount
lstrcmpiW
GetCommandLineW
lstrcmpiA
GetOEMCP
GetConsoleOutputCP
SetCurrentDirectoryA
MulDiv
DeleteFileW
GetModuleHandleA
GlobalFindAtomA
CopyFileA
GetProcessHeap
GetThreadLocale
lstrcmpA
IsDebuggerPresent
lstrlenW
GetLastError
GetCurrentProcessId
GetVersion
GetACP
GetCommandLineA
GetModuleHandleW
GetCurrentThreadId
DeleteFileA

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 103KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a5a625c5df2956bbdc36f0949a59f6a2

Headers

File Characteristics

Imports

gdi32

user32

kernel32

Sections

.text Size: 11KB - Virtual size: 11KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 103KB - Virtual size: 103KB

.rsrc Size: 16KB - Virtual size: 15KB

.text
Size: 11KB - Virtual size: 11KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 103KB - Virtual size: 103KB

.rsrc
Size: 16KB - Virtual size: 15KB