3f38e0376d1c8cb9ae73dd6c79cd59a8_JaffaCakes118

General

Target

3f38e0376d1c8cb9ae73dd6c79cd59a8_JaffaCakes118
Size

23KB
MD5

3f38e0376d1c8cb9ae73dd6c79cd59a8
SHA1

dddfc75d3da649469169b3bd8efec90996ced8ab
SHA256

4df1a45ab989c78a663257d1feb3c35a1321170ea8b9f1ba91c4a644da3da88a
SHA512

5742e047bc7d438e22693d5f97aba27fa7f1ead823c6566523a595cc88a7ea75a0694319bb1289c442bdcd0f3391ff5ea7ce721f2a39269e07797b69ef266cdb
SSDEEP

384:19VuT/NpUTl6nnnnnnt/mTYwFd3+h7qXtNJrI3rOji4Vv1oJkZwG:vyUTl6nnnnnntO0kZ+h07e3rOjimtv+G

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3f38e0376d1c8cb9ae73dd6c79cd59a8_JaffaCakes118

Files

3f38e0376d1c8cb9ae73dd6c79cd59a8_JaffaCakes118
.exe windows:5 windows x86 arch:x86

30a8d6c74c6aaa8927d2babb324356d9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__setlc_active
_seh_longjmp_unwind
__pxcptinfoptrs
_mbclen
_wcsicoll
__p__mbcasemap
_ftol
_wstati64
__RTDynamicCast
wcsxfrm

ole32

HMETAFILE_UserMarshal
CoInstall
SetDocumentBitStg
OleSave
CreateILockBytesOnHGlobal
DcomChannelSetHResult
OleCreateLinkFromData

advapi32

AddUsersToEncryptedFile
CloseEncryptedFileRaw
GetTrusteeFormA
ImpersonateLoggedOnUser
QueryServiceConfigW
RegSaveKeyA
WmiSetSingleItemW
SystemFunction035
RegGetKeySecurity

kernel32

EnumCalendarInfoExA
EnumLanguageGroupLocalesW
Module32NextW
GetProcessPriorityBoost
CreateSemaphoreW
FoldStringA
IsBadHugeReadPtr
SetVolumeMountPointA
ReadConsoleOutputA
GetConsoleCommandHistoryW
SetComputerNameExW
CreateIoCompletionPort
ConsoleMenuControl
lstrcatA
ExitProcess

gdi32

SetICMProfileW
SelectFontLocal
SelectObject
ExcludeClipRect
GdiAddGlsBounds
SetWinMetaFileBits

user32

GetMenuItemCount
RegisterHotKey
SetTaskmanWindow
IsIconic
DrawIcon
IsDialogMessageW
SetUserObjectInformationW
WindowFromPoint

Sections

.text
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

30a8d6c74c6aaa8927d2babb324356d9

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

ole32

advapi32

kernel32

gdi32

user32

Sections

.text Size: 19KB - Virtual size: 19KB

.data Size: 2KB - Virtual size: 3KB

.rsrc Size: 1024B - Virtual size: 5KB

.text
Size: 19KB - Virtual size: 19KB

.data
Size: 2KB - Virtual size: 3KB

.rsrc
Size: 1024B - Virtual size: 5KB