JaffaCakes118_0a17de1a58a49a9c70e1fe93d2660673

General

Target

JaffaCakes118_0a17de1a58a49a9c70e1fe93d2660673
Size

275KB
MD5

0a17de1a58a49a9c70e1fe93d2660673
SHA1

613f8246544da665ac47f079fb5e14161481e3f5
SHA256

19f7b9555e742866e0a4adee1cad38da969e9a930ed68e085d9a1a5a0f76ae7f
SHA512

6a1af4339583fe6b0fe50948c8cf24133ae31cdd8ea42dced03d766e8b4cc5956ede82187653482589250be8ebc7b07cf407258d3fa826a49e379d6a9924f3a5
SSDEEP

6144:cL9HBY8C8rq+3Na4cDbxQhZQS+5E5j/JsxHlxYB/T0zms:oZLrjNs5QhZQSEE5ajxZzl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_0a17de1a58a49a9c70e1fe93d2660673

Files

JaffaCakes118_0a17de1a58a49a9c70e1fe93d2660673
.exe windows:4 windows x86 arch:x86

2f5661fba2d5dc173c40f0496bda2642

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsBadReadPtr
GetStdHandle
GetEnvironmentStringsW
GlobalAddAtomW
FatalAppExitA
IsBadCodePtr
HeapDestroy
SetHandleCount
IsBadWritePtr
VirtualAlloc
GetOEMCP
SetUnhandledExceptionFilter
WriteFile
FreeEnvironmentStringsA
EnumResourceNamesA
HeapReAlloc
GetStartupInfoA
GetModuleFileNameA
GetEnvironmentVariableA
GetEnvironmentStrings
VirtualFree
WideCharToMultiByte
SetConsoleCtrlHandler
SetFilePointer
GetACP
GetDateFormatW
UnhandledExceptionFilter
GetCPInfo
HeapCreate
FreeEnvironmentStringsW
GetFileType
GetCurrentThread

gdi32

MoveToEx
IntersectClipRect
SetGraphicsMode
GetWorldTransform
SetROP2
BeginPath
Rectangle
FillPath
PolyBezierTo
PolylineTo
GetGraphicsMode
CloseFigure
SelectClipPath
SetBrushOrgEx
CreatePatternBrush
GetStockObject
LineTo
GetClipBox
EndPath
PolyDraw

setupapi

CM_Get_Depth
SetupDiGetDeviceRegistryPropertyW
CMP_WaitNoPendingInstallEvents
CM_Get_DevNode_Status

Sections

.text
Size: 137KB - Virtual size: 269KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 133KB - Virtual size: 133KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2f5661fba2d5dc173c40f0496bda2642

Headers

File Characteristics

Imports

kernel32

gdi32

setupapi

Sections

.text Size: 137KB - Virtual size: 269KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 133KB - Virtual size: 133KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 137KB - Virtual size: 269KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 133KB - Virtual size: 133KB

.rsrc
Size: 1024B - Virtual size: 4KB