f99cd981b8fe91b8d82721fead80ee7d_JaffaCakes118

General

Target

f99cd981b8fe91b8d82721fead80ee7d_JaffaCakes118
Size

194KB
MD5

f99cd981b8fe91b8d82721fead80ee7d
SHA1

78ff5605b43799b1f89fd88df6873438cab7fb79
SHA256

06d68c85b3db067febda72f3984c37088be605ebcf2b5e572f87d2df01c86ad7
SHA512

9279994d94582aa2e8e7fbe1d59347ef56654df07f1e213e1292da65586cb4dc9bad18326a6492e44e2e60c8aef6b4519436ecbe66c089bf36f6a7e389a54183
SSDEEP

6144:1M55lf9pyw+L9YK+b/b1bLqV9dJG7KRPIlnnxw:144LObIE7KRPI8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f99cd981b8fe91b8d82721fead80ee7d_JaffaCakes118

Files

f99cd981b8fe91b8d82721fead80ee7d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7fc725aa47b7da4884abcba710bad7fd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

setupapi

CMP_WaitNoPendingInstallEvents
SetupDiGetDeviceRegistryPropertyW
CM_Get_DevNode_Status

user32

GetWindowLongA
GetParent
SetWindowLongA
GetClientRect
IsChild
InvalidateRect
SetWindowRgn
IntersectRect
RegisterClassExA
LoadCursorA
PtInRect
SetWindowPos
IsWindow
RealGetWindowClassA
GetDC
wsprintfA
CallWindowProcA
CharNextA
ReleaseDC
SetFocus
GetKeyState
UnregisterClassA
BeginPaint
GetFocus
DefWindowProcA
GetClassInfoExA
EndPaint
ShowWindow
CreateWindowExA
EqualRect
UnionRect
OffsetRect
DestroyWindow

kernel32

CreateFiber
RtlUnwind
HeapDestroy
UnhandledExceptionFilter
GetProcAddress
VirtualFree
VirtualAlloc
InterlockedCompareExchange
HeapSize
GetCommandLineA
SuspendThread
HeapAlloc
IsProcessorFeaturePresent
IsDebuggerPresent
GetSystemInfo
GetLocaleInfoA
EnumResourceNamesA
HeapCreate
GetACP
SetThreadPriority
TerminateProcess
LoadLibraryA
VirtualProtect
SetUnhandledExceptionFilter
ExitProcess
VirtualQuery
HeapReAlloc
WriteFile

Sections

.text
Size: 175KB - Virtual size: 174KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7fc725aa47b7da4884abcba710bad7fd

Headers

File Characteristics

Imports

setupapi

user32

kernel32

Sections

.text Size: 175KB - Virtual size: 174KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 16KB - Virtual size: 15KB

.tls Size: 512B - Virtual size: 76KB

.text
Size: 175KB - Virtual size: 174KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 16KB - Virtual size: 15KB

.tls
Size: 512B - Virtual size: 76KB