462210ddded90ea065829766797b42b7_JaffaCakes118

General

Target

462210ddded90ea065829766797b42b7_JaffaCakes118
Size

62KB
MD5

462210ddded90ea065829766797b42b7
SHA1

85423872ccf850329004c861ec49d81bd070f83c
SHA256

e44fa7d29c6944f7421b262192b403b8722463ebd304d963c6989f5f82a4e764
SHA512

2a8a77c28f6e5062d0e387a45079daf0b9c5d101a500d146ad82d6e270b3111a98fd9682a6b2afd52cca70406346ab37a64ccfa2f2353c1a22186b6d8df2fcac
SSDEEP

1536:/fJbHIEr4nvttmJfnnKL/mKVnZZFJnE0rP:/B7j4gKRn3bE0rP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
462210ddded90ea065829766797b42b7_JaffaCakes118

Files

462210ddded90ea065829766797b42b7_JaffaCakes118
.exe windows:1 windows x86 arch:x86

74ac67b8b6fc0898afe0ee13b06424f0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_chkesp
__getmainargs
__p__fmode
_XcptFilter
exit
_wcstoi64
_acmdln
_exit
memcpy
_findfirst64
_adjust_fdiv
fgets
_controlfp
frexp
_except_handler3
ungetwc
_initterm
__setusermatherr
getwchar
__p__commode
_wrename
__set_app_type
_mbcasemap

gdi32

SetBkColor
RestoreDC
CreateDIBSection
GetBkMode
SetTextColor
SelectObject

ole32

CoUninitialize
CoInitialize
CoSetProxyBlanket

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

comctl32

PropertySheetA

comdlg32

ChooseFontA
GetSaveFileNameA
PrintDlgA

kernel32

MulDiv
WideCharToMultiByte
HeapCreate
GetSystemDirectoryA
GetCurrentDirectoryA
HeapAlloc
GetStdHandle
MapViewOfFile
GetStartupInfoA
GetModuleHandleA
GetConsoleOutputCP

user32

GetDesktopWindow
GetClientRect
GetUpdateRgn
FindWindowA

shell32

ShellExecuteA
SHBrowseForFolderA
ShellExecuteExA

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 57KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

74ac67b8b6fc0898afe0ee13b06424f0

Headers

File Characteristics

Imports

msvcrt

gdi32

ole32

version

comctl32

comdlg32

kernel32

user32

shell32

Sections

.text Size: 3KB - Virtual size: 2KB

.rdata Size: 57KB - Virtual size: 56KB

.data Size: 512B - Virtual size: 64KB

.rsrc Size: 512B - Virtual size: 4B

.text
Size: 3KB - Virtual size: 2KB

.rdata
Size: 57KB - Virtual size: 56KB

.data
Size: 512B - Virtual size: 64KB

.rsrc
Size: 512B - Virtual size: 4B