ac4ad219921aa13ac020f5dc460ad503_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

ac4ad219921aa13ac020f5dc460ad503_JaffaCakes118
Size

376KB
MD5

ac4ad219921aa13ac020f5dc460ad503
SHA1

df3cadeb2736d3df7a31c6c9d3dad122d9570e16
SHA256

4a417963968601bbe8f9311d779d1a022a380829bed4b7af4daf934eeba5c70f
SHA512

2df686213ea67e030440deb61fed6559f721b0b6bf973915c7509b1cc15896669ffab5061cfc1674d358c819e69756276a0e8180e65ee47855d4b5ab882676fb
SSDEEP

3072:Qiz52gCZrwDdc/dktao29OpN+S2YZLQ9KOdOgo0N1tqMIhJcyRBaIC:QYEtroakoo27S2YZ89b/l1QFheyR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ac4ad219921aa13ac020f5dc460ad503_JaffaCakes118

Files

ac4ad219921aa13ac020f5dc460ad503_JaffaCakes118
.exe windows:5 windows x86 arch:x86

4d91d7c5fdff2fb0353f9372cc54e830

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

StrCmpNA

crypt32

CertAddEncodedCertificateToStore

gdi32

InvertRgn
GetKerningPairsA
ExtSelectClipRgn

lz32

LZInit
LZSeek

winmm

waveOutGetID
midiOutClose

rasapi32

RasDialA

kernel32

GetNamedPipeClientProcessId
GetStringScripts
GetDateFormatW
VirtualQueryEx
WTSGetActiveConsoleSessionId
GetModuleHandleA
FreeConsole

mprapi

MprInfoCreate

shell32

SHGetMalloc

msi

ord30

msvfw32

ICGetDisplayFormat

rpcrt4

I_RpcFreeBuffer

version

GetFileVersionInfoSizeW

netapi32

NetLocalGroupDel

user32

DdeFreeStringHandle
GetProcessDefaultLayout
GetLastActivePopup

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

_D2
Size: 172KB - Virtual size: 172KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

PACK
Size: 142KB - Virtual size: 142KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4d91d7c5fdff2fb0353f9372cc54e830

Headers

DLL Characteristics

File Characteristics

Imports

shlwapi

crypt32

gdi32

lz32

winmm

rasapi32

kernel32

mprapi

shell32

msi

msvfw32

rpcrt4

version

netapi32

user32

Sections

.text Size: 13KB - Virtual size: 13KB

.data Size: 40KB - Virtual size: 46KB

.text Size: 1KB - Virtual size: 1KB

_D2 Size: 172KB - Virtual size: 172KB

PACK Size: 142KB - Virtual size: 142KB

.rsrc Size: 2KB - Virtual size: 2KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 13KB - Virtual size: 13KB

.data
Size: 40KB - Virtual size: 46KB

.text
Size: 1KB - Virtual size: 1KB

_D2
Size: 172KB - Virtual size: 172KB

PACK
Size: 142KB - Virtual size: 142KB

.rsrc
Size: 2KB - Virtual size: 2KB

.reloc
Size: 2KB - Virtual size: 2KB