2c09b372e7c0c6d6027f1ea005697aa8_JaffaCakes118

General

Target

2c09b372e7c0c6d6027f1ea005697aa8_JaffaCakes118
Size

133KB
MD5

2c09b372e7c0c6d6027f1ea005697aa8
SHA1

8e703fe0e6cbada69cb2291038a4a286285ff811
SHA256

acadc523789a1c1b4517252a927d6e89ea28395b15db02e2408ee823c6120afe
SHA512

a343e7ad63e66ddc4bd3cc1d57d63d4413da302543b88a1fe5d5cec4a5afb4c603e0718f1401f066cbda9df333fee1b2fb374828754467e302c7ae7670176241
SSDEEP

3072:s52mhA1yX43g+TywlTA/DApoMwTNBTWVd3rMX4foLMpictGpK9ZVZfmXT7VA:s52mQyIw+TywlT+ApoMwTNBTWVd3rMXa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2c09b372e7c0c6d6027f1ea005697aa8_JaffaCakes118

Files

2c09b372e7c0c6d6027f1ea005697aa8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

29cc39504c0056ebffe761b7d8abdaeb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetEnhMetaFilePaletteEntries
SetColorSpace
GetBrushOrgEx
OffsetViewportOrgEx
RestoreDC
IntersectClipRect
GetDIBColorTable
LPtoDP
DeleteDC
DPtoLP
CreateRectRgn
SetStretchBltMode
GetPaletteEntries
SelectObject
StartPage
MaskBlt
EndPath
PlayEnhMetaFile
UnrealizeObject
SelectPalette
SetBrushOrgEx
BitBlt
Chord
DeleteObject
StretchBlt
SetMapMode
GetTextMetricsA
CreatePatternBrush
CreateCompatibleBitmap
GetDeviceCaps
LineTo
CreatePen
GetPixel
SetWindowExtEx
SetBkColor
ExcludeClipRect
SetDIBColorTable
PatBlt
BeginPath
CreateBitmap
GetStockObject
GetCharWidth32A
EndPage
GetDCOrgEx
SetTextColor
ScaleViewportExtEx
EndDoc
GetClipBox
Rectangle
SelectClipPath
SetBkMode
MoveToEx

user32

CharNextA

kernel32

GetThreadLocale
lstrcmpiA
SetLastError
RemoveDirectoryA
IsDebuggerPresent
GetCommandLineA
GetModuleHandleA
GetCurrentThread
lstrcmpA
MulDiv
GetACP
lstrcmpiW
GetConsoleOutputCP
GetLastError
DeleteFileW
GlobalFindAtomA
GetCurrentProcessId
GetTickCount
GetModuleHandleW
DeleteFileA
GetCommandLineW
GetCurrentThreadId
GetVersion
CopyFileA
SetCurrentDirectoryA
GlobalFindAtomW
lstrlenW
lstrlenA
GetOEMCP
VirtualAlloc
GetProcessHeap
GetUserDefaultLangID

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 103KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

29cc39504c0056ebffe761b7d8abdaeb

Headers

File Characteristics

Imports

gdi32

user32

kernel32

Sections

.text Size: 10KB - Virtual size: 10KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 103KB - Virtual size: 102KB

.rsrc Size: 16KB - Virtual size: 15KB

.text
Size: 10KB - Virtual size: 10KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 103KB - Virtual size: 102KB

.rsrc
Size: 16KB - Virtual size: 15KB