0e6cb57c4c45e86f67c067c750a87a5e_JaffaCakes118

General

Target

0e6cb57c4c45e86f67c067c750a87a5e_JaffaCakes118
Size

104KB
MD5

0e6cb57c4c45e86f67c067c750a87a5e
SHA1

72c20027e84e607e239e1b1f898123060cc9d45e
SHA256

13d82101dee25eb086ed16e09ecf4d5cdace1e9682dcb9919629e8e9adaaad3b
SHA512

28016a968a35e4787105f7038e0bd740f992cd1d2c0af4821fbf1141260d3f9afc45cf9f25c3582faabe673c98d4caba9594f6420ed0b62fd43e684fe5cd712f
SSDEEP

1536:9WGx67eSsHJ4OBn4Gf4sTxXF9CfUYNPJRcH71qyvCMScRRA7aJiwjksb:rx6zspn4Gfzz9sPJo71BvAcUXsb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0e6cb57c4c45e86f67c067c750a87a5e_JaffaCakes118

Files

0e6cb57c4c45e86f67c067c750a87a5e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1c1e2ed841f760d0fa4594fdc3ab920a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
EnumResourceLanguagesA
ExitProcess
FreeEnvironmentStringsA
GetACP
GetCalendarInfoW
GetCommandLineA
GetModuleHandleA
GetStartupInfoA
GetVersionExA
GetVolumeNameForVolumeMountPointA
HeapAlloc
HeapCreate
IsBadStringPtrW
SetCalendarInfoA
SetEndOfFile
SetThreadExecutionState
TerminateJobObject
TryEnterCriticalSection
WaitForSingleObject
lstrcatA

user32

LoadStringA
GetWindowRect
GetScrollInfo
DestroyWindow
SetScrollInfo

comctl32

ImageList_GetImageRect
FlatSB_GetScrollProp
ImageList_DragLeave
ImageList_Read
FlatSB_GetScrollInfo

msi

MsiGetFileSignatureInformationW
MsiEvaluateConditionA
MsiDatabaseCommit
Migrate10CachedPackagesA
MsiConfigureProductExA
MsiConfigureProductA
MsiUseFeatureW

oleaut32

VarBstrCmp
SysStringLen
SysReAllocString
SafeArrayDestroy
SafeArrayAllocData
SafeArrayAccessData
RevokeActiveObject
RegisterTypeLi
OleTranslateColor
OleLoadPicturePath
ClearCustData

Sections

.text
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1c1e2ed841f760d0fa4594fdc3ab920a

Headers

File Characteristics

Imports

kernel32

user32

comctl32

msi

oleaut32

Sections

.text Size: 64KB - Virtual size: 63KB

.data Size: 28KB - Virtual size: 27KB

.rsrc Size: 4KB - Virtual size: 3KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 64KB - Virtual size: 63KB

.data
Size: 28KB - Virtual size: 27KB

.rsrc
Size: 4KB - Virtual size: 3KB

.reloc
Size: 4KB - Virtual size: 3KB