3c75a56fe734f8bdb602dae2081c149b_JaffaCakes118

General

Target

3c75a56fe734f8bdb602dae2081c149b_JaffaCakes118
Size

6.5MB
MD5

3c75a56fe734f8bdb602dae2081c149b
SHA1

01eb676730eb22fd516dc837b0aaab8d03773a94
SHA256

a1c342444eecd9b51374ed2d19d3680c4b176f688a3fd3635415ab88762add23
SHA512

982dde610e7ba2224683aaf067fb6fa39e9b94e116faffcab2619e62dc7a8c7468673270c98aeffde6773606234d4c4a473bcc9c8f9da7c6cdcd27de529744cc
SSDEEP

196608:SepoPVXoFc/cNWc5TDZGnkbBZCKlxLkpD:SpP1oFc/czTDZWkbBtm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3c75a56fe734f8bdb602dae2081c149b_JaffaCakes118

Files

3c75a56fe734f8bdb602dae2081c149b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

11a78bcb42b0a11a438f3970f5498918

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcessHeap
ReadConsoleA
lstrcatW
WriteConsoleOutputCharacterA
GetNumberFormatW
CompareStringA
WritePrivateProfileSectionW
GetFileAttributesExA
DeleteFiber
WritePrivateProfileSectionA
GetFileInformationByHandle
PulseEvent
LoadLibraryExW
GetTimeZoneInformation
LocalFileTimeToFileTime
ReadDirectoryChangesW
PurgeComm
CreateFileW
VirtualQuery
MoveFileW
GetCommConfig
WriteFile
GetBinaryTypeW
FreeLibraryAndExitThread
GetCompressedFileSizeW
GetBinaryTypeA
GetLargestConsoleWindowSize
SetFileAttributesA
PeekConsoleInputW
SearchPathW
CreateMutexA
RemoveDirectoryA
GetOEMCP
GetPrivateProfileStringA
ExitProcess

oleaut32

VariantChangeType
VariantCopy
SetErrorInfo
SafeArrayUnaccessData
LoadTypeLi

shell32

SHGetSpecialFolderPathA
ShellExecuteA
SHFileOperationW
ExtractIconA

user32

LoadMenuIndirectA
WindowFromDC
SendMessageA
SendInput
EnumDisplayDevicesA
WindowFromPoint
CharLowerBuffW
BringWindowToTop
CreateDialogIndirectParamA

comdlg32

GetSaveFileNameA
FindTextW

gdi32

CreateFontA
GetClipBox
GdiComment
SetDIBitsToDevice
GetTextExtentExPointW
GetTextMetricsA
GetPixelFormat
GetWindowExtEx

Sections

.text
Size: 4KB - Virtual size: 6.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6.4MB - Virtual size: 6.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 68KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

11a78bcb42b0a11a438f3970f5498918

Headers

File Characteristics

Imports

kernel32

oleaut32

shell32

user32

comdlg32

gdi32

Sections

.text Size: 4KB - Virtual size: 6.4MB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 6.4MB - Virtual size: 6.4MB

.rsrc Size: 68KB - Virtual size: 66KB

.text
Size: 4KB - Virtual size: 6.4MB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 6.4MB - Virtual size: 6.4MB

.rsrc
Size: 68KB - Virtual size: 66KB