2ed131da4ee4b9c30dcf660563edd69b_JaffaCakes118

General

Target

2ed131da4ee4b9c30dcf660563edd69b_JaffaCakes118
Size

108KB
MD5

2ed131da4ee4b9c30dcf660563edd69b
SHA1

c1eb29a35faafb9098dbc543e7b5e6407285061e
SHA256

01f395010b2a0a881edb173a45bdcf8f6d65811c90424af3f6f2f02e24822df8
SHA512

a49164f9745731c6b3b201cd8f06012fa65c9006509c7e058d85725df4996c85cef5a5cf37e806af6c722cb30ca04443e05fa0b27d4bd7339c3e0fe4b758f971
SSDEEP

3072:uAdcz5WSgrU2KgnBzeJKTxndYv8YBxCp+by69wl2pTYzGUI:y4pKzOYpBspTSdpTK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2ed131da4ee4b9c30dcf660563edd69b_JaffaCakes118

Files

2ed131da4ee4b9c30dcf660563edd69b_JaffaCakes118
.dll windows:4 windows x86 arch:x86

1c1e2ed841f760d0fa4594fdc3ab920a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
EnumResourceLanguagesA
ExitProcess
FreeEnvironmentStringsA
GetACP
GetCalendarInfoW
GetCommandLineA
GetModuleHandleA
GetStartupInfoA
GetVersionExA
GetVolumeNameForVolumeMountPointA
HeapAlloc
HeapCreate
IsBadStringPtrW
SetCalendarInfoA
SetEndOfFile
SetThreadExecutionState
TerminateJobObject
TryEnterCriticalSection
WaitForSingleObject
lstrcatA

user32

LoadStringA
GetWindowRect
GetScrollInfo
DestroyWindow
SetScrollInfo

comctl32

ImageList_GetImageRect
FlatSB_GetScrollProp
ImageList_DragLeave
ImageList_Read
FlatSB_GetScrollInfo

msi

MsiGetFileSignatureInformationW
MsiEvaluateConditionA
MsiDatabaseCommit
Migrate10CachedPackagesA
MsiConfigureProductExA
MsiConfigureProductA
MsiUseFeatureW

oleaut32

VarBstrCmp
SysStringLen
SysReAllocString
SafeArrayDestroy
SafeArrayAllocData
SafeArrayAccessData
RevokeActiveObject
RegisterTypeLi
OleTranslateColor
OleLoadPicturePath
ClearCustData

Sections

.text
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1c1e2ed841f760d0fa4594fdc3ab920a

Headers

File Characteristics

Imports

kernel32

user32

comctl32

msi

oleaut32

Sections

.text Size: 68KB - Virtual size: 67KB

.data Size: 28KB - Virtual size: 27KB

.rsrc Size: 4KB - Virtual size: 3KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 68KB - Virtual size: 67KB

.data
Size: 28KB - Virtual size: 27KB

.rsrc
Size: 4KB - Virtual size: 3KB

.reloc
Size: 4KB - Virtual size: 3KB