5d834f2f9c557385a0c8e3680dc9fb62_JaffaCakes118

General

Target

5d834f2f9c557385a0c8e3680dc9fb62_JaffaCakes118
Size

7KB
MD5

5d834f2f9c557385a0c8e3680dc9fb62
SHA1

8af6a3165f5eb6d214224a7f61fea07994d29ee6
SHA256

3d022804bec00386cd8cf993e4f3ea0ac851b4d8908e5222fef4420adbb8041e
SHA512

d923695fe79706763f0f92ba5fa39c815bdfab0d1f4087f0a0d4aaeba17dfe716ec4da7e4fd9872a9ea00e5edc84b689c0e917683c1cff4ae9e31a06113e5ea6
SSDEEP

96:QQz8FbIq8Bgyv57W8nTPm60Fb13XTsX74bk2P0ZqFr1I+/XqzOvSrop/Cui8:QC8Wqk9nTO6i13X4reCKraiqgMuTi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5d834f2f9c557385a0c8e3680dc9fb62_JaffaCakes118

Files

5d834f2f9c557385a0c8e3680dc9fb62_JaffaCakes118
.exe windows:1 windows x86 arch:x86

16034ad7d6f24802be5aa5eeb4651d89

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

CloseHandle
CreateFileA
ExitProcess
FlushConsoleInputBuffer
GetCommandLineA
GetConsoleCursorInfo
GetConsoleMode
GetConsoleScreenBufferInfo
GetLastError
GetModuleHandleA
GetStartupInfoA
GetStdHandle
GetVersionExA
GlobalAlloc
GlobalFree
MultiByteToWideChar
PeekConsoleInputA
ReadConsoleInputA
ReadFile
ScrollConsoleScreenBufferA
SetConsoleCtrlHandler
SetConsoleCursorInfo
SetConsoleCursorPosition
SetConsoleMode
SetErrorMode
SetFilePointer
SetLastError
Sleep
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
WideCharToMultiByte
WriteConsoleOutputA
WriteFile

ole32

CLSIDFromProgID
CoCreateInstance
CoInitialize
CoUninitialize
ProgIDFromCLSID

oleaut32

GetActiveObject
SafeArrayCreate
SysAllocStringByteLen
SysFreeString
SysStringByteLen
VariantClear
VariantCopy

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.link
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rloc
Size: 512B - Virtual size: 160B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

16034ad7d6f24802be5aa5eeb4651d89

Headers

File Characteristics

Imports

kernel32

ole32

oleaut32

Sections

.text Size: 3KB - Virtual size: 3KB

.data Size: 512B - Virtual size: 1KB

.link Size: 1KB - Virtual size: 1KB

.rloc Size: 512B - Virtual size: 160B

.text
Size: 3KB - Virtual size: 3KB

.data
Size: 512B - Virtual size: 1KB

.link
Size: 1KB - Virtual size: 1KB

.rloc
Size: 512B - Virtual size: 160B