3f09f75780068f79581274c4e7ba9551_JaffaCakes118

General

Target

3f09f75780068f79581274c4e7ba9551_JaffaCakes118
Size

187KB
MD5

3f09f75780068f79581274c4e7ba9551
SHA1

d1b507e1f6ba6fafa1027923dff504a4504d44d3
SHA256

b5ef81a2d98e05dd0e923e7ebe73b799f8df0fe7b4f1a73df664dd98a6454698
SHA512

3774434e4abea451c0051aee249aa1fd8251fea176b1e54866e568236bbcee8088a5d808334a58e36f068e4a23ae8c01c96971baded94cadf28dd2a4c3b76f53
SSDEEP

3072:qMwk86ZvHHVo3AgPVVUq56FycByQ0l79dP6RjSW6qH7LMhNixWzQ:RZ/1owg9Cq5F0yFHycW6qHXMh/z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3f09f75780068f79581274c4e7ba9551_JaffaCakes118

Files

3f09f75780068f79581274c4e7ba9551_JaffaCakes118
.exe windows:4 windows x86 arch:x86

46b4dd23cc321305022e2d68579314bc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

CM_Get_Depth
CMP_WaitNoPendingInstallEvents
SetupDiGetDeviceRegistryPropertyW
CM_Get_DevNode_Status

gdi32

FillPath
GetClipBox
MoveToEx
GetStockObject
GetGraphicsMode
SetROP2
SetBrushOrgEx
CreatePatternBrush
SetGraphicsMode
Rectangle
GetWorldTransform
EndPath
SelectClipPath
PolyBezierTo
PolylineTo
CloseFigure
IntersectClipRect
LineTo
BeginPath
PolyDraw

kernel32

GetStdHandle
HeapCreate
GetCPInfo
GlobalAddAtomW
FatalAppExitA
GetACP
SetConsoleCtrlHandler
UnhandledExceptionFilter
GetStartupInfoA
GetEnvironmentVariableA
SetHandleCount
GetFileType
GetEnvironmentStrings
GetOEMCP
SetFilePointer
EnumResourceNamesA
FreeEnvironmentStringsW
IsBadCodePtr
HeapReAlloc
WriteFile
GetDateFormatW
GetEnvironmentStringsW
IsBadWritePtr
VirtualAlloc
WideCharToMultiByte
IsBadReadPtr
HeapDestroy
VirtualFree
FreeEnvironmentStringsA
SetUnhandledExceptionFilter
GetModuleFileNameA
GetCurrentThread

Sections

.text
Size: 96KB - Virtual size: 239KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 87KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

46b4dd23cc321305022e2d68579314bc

Headers

File Characteristics

Imports

setupapi

gdi32

kernel32

Sections

.text Size: 96KB - Virtual size: 239KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 87KB - Virtual size: 86KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 96KB - Virtual size: 239KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 87KB - Virtual size: 86KB

.rsrc
Size: 1024B - Virtual size: 4KB