faa9d3d4b2cf3fda2c0ba3b78dc371a4_JaffaCakes118

General

Target

faa9d3d4b2cf3fda2c0ba3b78dc371a4_JaffaCakes118
Size

172KB
MD5

faa9d3d4b2cf3fda2c0ba3b78dc371a4
SHA1

0a854fb3fb246de875a71487347bdd164809495c
SHA256

b6ad7b879c06ff01514f01abd93ea518d8fc76d604c34ea445e197b2bd9f2aea
SHA512

16b164cf5139dfe6500b9828b5ad2c9c1cac9966ff8a42004b58a4e5f0889bf4e1407678ef6acc528bf4953f17a30f51c297bfd60f3f737c0e8c7c727b812ff0
SSDEEP

3072:zck7CKzGS00Kede+/nBeTHheh9xeYh6rf8YWOnZhqEqnGxLUuk08nqLAmeL5:zck7CKj5yiBeT0hL+WbfnqJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
faa9d3d4b2cf3fda2c0ba3b78dc371a4_JaffaCakes118

Files

faa9d3d4b2cf3fda2c0ba3b78dc371a4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

dbcbd5a3aa6e8377f797c840c09ec3eb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

CM_Get_Depth
CMP_WaitNoPendingInstallEvents
SetupDiGetDeviceRegistryPropertyW
CM_Get_DevNode_Status

gdi32

CreatePatternBrush
SetGraphicsMode
GetClipBox
MoveToEx
IntersectClipRect
SelectClipPath
GetGraphicsMode
FillPath
CloseFigure
LineTo
PolyBezierTo
GetStockObject
BeginPath
SetROP2
PolylineTo
SetBrushOrgEx
GetWorldTransform
Rectangle
EndPath
PolyDraw

kernel32

GetVersion
CloseHandle
GetVersionExA
GetModuleFileNameA
GlobalAddAtomW
RtlUnwind
SetLastError
HeapFree
GetTickCount
GlobalMemoryStatus
TlsFree
TlsGetValue
TlsSetValue
GetStartupInfoA
GetCommandLineA
GetModuleHandleW
EnumResourceNamesA
GetDiskFreeSpaceA
GetSystemTimeAsFileTime
TerminateProcess
GetFileType
SetUnhandledExceptionFilter
HeapAlloc
GetStdHandle
GetCurrentProcessId
GetCurrentThread
GetComputerNameA
TlsAlloc
GetCurrentProcess
OutputDebugStringW
GetProcessHeap
QueryPerformanceCounter
RaiseException
GetLocalTime
SetHandleCount
DeviceIoControl
InterlockedExchange

Sections

.text
Size: 93KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 75KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dbcbd5a3aa6e8377f797c840c09ec3eb

Headers

File Characteristics

Imports

setupapi

gdi32

kernel32

Sections

.text Size: 93KB - Virtual size: 92KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 75KB - Virtual size: 74KB

.reloc Size: 1024B - Virtual size: 124KB

.text
Size: 93KB - Virtual size: 92KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 75KB - Virtual size: 74KB

.reloc
Size: 1024B - Virtual size: 124KB