38ca0482aa0033745cabbb5f9e3964fd_JaffaCakes118

General

Target

38ca0482aa0033745cabbb5f9e3964fd_JaffaCakes118
Size

504KB
MD5

38ca0482aa0033745cabbb5f9e3964fd
SHA1

8bee9a69d4f848b0a89667acde51a87e2c1dc016
SHA256

df579f32483c75f487faee149f812cf186ad07ce48cedddb7f0a5fad62be2b89
SHA512

c944621df5794a2f08b31d5b133ba99380f5e0879e6da90e5757c4655478de6a466b1eeff4c2aa6f38d8b05d8ed3ea13eecbd8c99118db0d1df48b4635ca5110
SSDEEP

12288:QZ89yBGVvWG806qMtghTLacOwYM1Sa4s1tpCu4f7dKXZ5N:QZkrVvc0wtJpwfSa4+tZ4dK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
38ca0482aa0033745cabbb5f9e3964fd_JaffaCakes118

Files

38ca0482aa0033745cabbb5f9e3964fd_JaffaCakes118
.exe windows:4 windows x86 arch:x86

59b9c84d7ff242a365a40563be64b076

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
CloseHandle
MultiByteToWideChar
VirtualProtect
HeapDestroy
lstrcmpiW
GetTickCount
LocalAlloc
HeapAlloc
LoadLibraryW
LoadLibraryA
LoadLibraryA
SetLastError
LoadLibraryW
InterlockedCompareExchange
GetVersionExA
CreateThread
CloseHandle
InitializeCriticalSection
VirtualProtect
ReadFile
GetCurrentProcessId
SetLastError
GetModuleFileNameW
CreateEventW
DeleteCriticalSection
CloseHandle
GetProcessHeap
EnterCriticalSection
GetModuleFileNameA
CreateThread
lstrlenA
LoadLibraryA
InterlockedIncrement
SetLastError
GetProcessHeap
HeapFree
CreateEventW
LoadLibraryA
GetCurrentThreadId
UnhandledExceptionFilter
lstrlenA
SetLastError
CloseHandle
GetSystemTimeAsFileTime
GetLastError
ReadFile
CreateFileW
UnhandledExceptionFilter
InterlockedCompareExchange
DisableThreadLibraryCalls

gdi32

GetWindowExtEx
SetBkColor
BitBlt
PatBlt
SetBkColor
GetBrushOrgEx
StretchBlt
StretchBlt
GetWindowOrgEx
CreateDIBSection
BitBlt
Polygon
CreateSolidBrush
CreateSolidBrush
CreateFontA
BitBlt
GetPixel
GetBrushOrgEx
LineTo
Polygon
GetCurrentObject
GetWindowExtEx
SetBkMode
SetBkMode
SetWindowExtEx
GetPixel
SetBrushOrgEx
MoveToEx
GetPixel
Ellipse
GetWindowExtEx
Rectangle
GetBkColor
GetWindowOrgEx
SetWindowOrgEx
SetWindowExtEx
Polygon
CreateBitmapIndirect
CreateRectRgn
CreateFontIndirectA
GetWindowOrgEx
SetBkMode
CombineRgn
GetBkColor
RoundRect
Ellipse
SetBrushOrgEx
SetTextColor
StretchBlt
MoveToEx
GetBkColor
SelectObject
RoundRect
GetBkColor

Sections

.text
Size: 498KB - Virtual size: 964KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

59b9c84d7ff242a365a40563be64b076

Headers

File Characteristics

Imports

kernel32

gdi32

Sections

.text Size: 498KB - Virtual size: 964KB

.data Size: 512B - Virtual size: 4KB

.rdata Size: 3KB - Virtual size: 4KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 498KB - Virtual size: 964KB

.data
Size: 512B - Virtual size: 4KB

.rdata
Size: 3KB - Virtual size: 4KB

.rsrc
Size: 1024B - Virtual size: 4KB