45fbf0f7956ccc8f82fdff4de56a7b90_JaffaCakes118

General

Target

45fbf0f7956ccc8f82fdff4de56a7b90_JaffaCakes118
Size

244KB
MD5

45fbf0f7956ccc8f82fdff4de56a7b90
SHA1

00c25c6ca37c0562e00d21e23ae29bac6be7b345
SHA256

c4dfea23d08e0a4553414b768b4a5bfeef8a6213cdb610fe587f849ce5a96856
SHA512

b7c78e8f6d325d0f94655da4a71b83c5a3f8a3b6065a299fd6460cda08bfc9242abb83828b14092077d47c8b0db487e58749fceb928885b4c0ac1317576568aa
SSDEEP

3072:f0E2Ru7d5JGBzXMsmBZ3tQCbCNuhZYRiFb8ZjfNtUDZD420IuhWbS4jeC1LmOKU1:fn9RzXjaCuNu4R6cj0VDavFqVmOKUeyn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
45fbf0f7956ccc8f82fdff4de56a7b90_JaffaCakes118

Files

45fbf0f7956ccc8f82fdff4de56a7b90_JaffaCakes118
.dll windows:4 windows x86 arch:x86

9e6a15806956c80dff5d5b5fddb91d8d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CommConfigDialogA
ExitProcess
GetACP
GetCommandLineA
GetComputerNameExW
GetModuleHandleA
GetNumberFormatA
GetStartupInfoA
GetSystemTime
GetTapePosition
GetVersionExA
HeapAlloc
HeapCreate
OpenJobObjectW
OpenSemaphoreW
OpenThread
ReadDirectoryChangesW
RemoveDirectoryW
SetFileTime
UpdateResourceW
WritePrivateProfileSectionW
lstrcpyW

user32

TranslateAcceleratorA
SetClipboardData

comctl32

MenuHelp
InitCommonControls
DrawStatusTextW
ImageList_AddIcon
ImageList_AddMasked
ImageList_Create
ImageList_DragLeave
ImageList_DragMove
ImageList_GetDragImage
ImageList_GetImageRect
ImageList_Read
ImageList_ReplaceIcon
ImageList_SetIconSize
ImageList_SetImageCount

ole32

CoFileTimeNow
CoCreateInstance

dbghelp

SearchTreeForFile
dbghelp
SymSetOptions
SymMatchFileName
SymGetTypeFromName
SymGetLineFromAddr64
DbgHelpCreateUserDumpW
FindDebugInfoFileEx
ImageDirectoryEntryToDataEx
StackWalk
SymEnumerateSymbols64

Sections

.text
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9e6a15806956c80dff5d5b5fddb91d8d

Headers

File Characteristics

Imports

kernel32

user32

comctl32

ole32

dbghelp

Sections

.text Size: 56KB - Virtual size: 55KB

.data Size: 28KB - Virtual size: 27KB

.rsrc Size: 4KB - Virtual size: 3KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 56KB - Virtual size: 55KB

.data
Size: 28KB - Virtual size: 27KB

.rsrc
Size: 4KB - Virtual size: 3KB

.reloc
Size: 4KB - Virtual size: 3KB