621741eaea7dd0d8e01f9230f371a052_JaffaCakes118

General

Target

621741eaea7dd0d8e01f9230f371a052_JaffaCakes118
Size

67KB
MD5

621741eaea7dd0d8e01f9230f371a052
SHA1

02c46da05368b27fab2bb808ef9841787d39176a
SHA256

a81a424539a92a2a2f6cc6387d05c61a5560ff3579803b5f6bb09db0759258eb
SHA512

cffd333a550ecffa288df8e6a49d6b890963ebf8d2e943d01430525ac681c52f1a9da26ba2b169c99cda09e0a19632db8242e0a388ff53ced2390d6b1a7f1adf
SSDEEP

1536:t08THjNzgGXcwi+6ARBGTH+HKQNYBgShWpD+:t08THxzgGswDdRBGTHK0gSYpD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
621741eaea7dd0d8e01f9230f371a052_JaffaCakes118

Files

621741eaea7dd0d8e01f9230f371a052_JaffaCakes118
.exe regsvr32 windows:4 windows x86 arch:x86

5396eefd723c6fd6b863714dd65a3a38

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LeaveCriticalSection
WaitForMultipleObjects
GetFileInformationByHandle
CopyFileA
DelayLoadFailureHook
FindAtomA
GetUserDefaultLCID
SetConsoleNumberOfCommandsA
UnmapViewOfFile
GetAtomNameA
CompareStringA
SetPriorityClass
ResumeThread
GetSystemDefaultUILanguage
SetConsoleDisplayMode
GlobalDeleteAtom
ConsoleMenuControl
SetCalendarInfoW
DeviceIoControl
GetCommandLineA
ExitProcess
GetStartupInfoA

user32

DdeFreeDataHandle
DdeConnectList
EndTask
LoadMenuIndirectA
GetProcessDefaultLayout
PostQuitMessage
DdeFreeStringHandle
UnhookWindowsHookEx
LoadAcceleratorsA
ChildWindowFromPointEx
CallMsgFilter
SetClipboardViewer
GetCursorFrameInfo
CharUpperBuffA
DrawTextExA

shell32

ExtractAssociatedIconExA
DragAcceptFiles
DllGetClassObject
StrCmpNW
SHGetFileInfoA

Exports

Exports

DllRegisterServer

Sections

.text
Size: 4KB - Virtual size: 87KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 59KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 2KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

5396eefd723c6fd6b863714dd65a3a38

Headers

File Characteristics

Imports

kernel32

user32

shell32

Exports

Exports

Sections

.text Size: 4KB - Virtual size: 87KB

.data Size: 59KB - Virtual size: 63KB

.rsrc Size: 1024B - Virtual size: 4KB

.edata Size: 2KB - Virtual size: 5KB

.reloc Size: - Virtual size: 4KB

.text
Size: 4KB - Virtual size: 87KB

.data
Size: 59KB - Virtual size: 63KB

.rsrc
Size: 1024B - Virtual size: 4KB

.edata
Size: 2KB - Virtual size: 5KB

.reloc
Size: - Virtual size: 4KB