62c5d0317f441a2318e92932c29c7388_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

62c5d0317f441a2318e92932c29c7388_JaffaCakes118
Size

2.0MB
MD5

62c5d0317f441a2318e92932c29c7388
SHA1

50c85981e197c4d0b7646ed9a5dbfce0e229c849
SHA256

aa3e7fb7512bb51c091235e285d8a65b6fea6935a353cb713bccc50fd139ca6f
SHA512

9e781b8be0786adb480081159b5955e4c05b790008160edb8f637a4e9f4d89e134b049e45f44db83f7b0796a68d22e289cd7f9ac67ab25e648c9d6f33d9f5e6e
SSDEEP

49152:yHe+7HRt1ydY2QsSa4yITXu0wM4UzrdVDvZpblmaknlE:yv1t1ydYE74yUXeM4urzvlMi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
62c5d0317f441a2318e92932c29c7388_JaffaCakes118

Files

62c5d0317f441a2318e92932c29c7388_JaffaCakes118
.exe windows:1 windows x86 arch:x86

ca1c7853b29bed02bab5cfa77f707413

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

lstrcpy
DeleteCriticalSection
TlsSetValue
lstrlenW
Sleep

user32

GetKeyboardType
WindowFromPoint

advapi32

RegQueryValueExA
RegSetValueExA

oleaut32

SysFreeString
SafeArrayPtrOfIndex
GetErrorInfo

version

VerQueryValueA

gdi32

UnrealizeObject

ole32

CreateStreamOnHGlobal

comctl32

ImageList_SetIconSize

imm32

ImmSetCompositionWindow

Exports

Exports

__DebuggerHookData
__GetExceptDLLinfo
___CPPdebugHook

Sections

.text
Size: 117KB - Virtual size: 376KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 569KB - Virtual size: 888KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

ca1c7853b29bed02bab5cfa77f707413

Headers

File Characteristics

Imports

kernel32

user32

advapi32

oleaut32

version

gdi32

ole32

comctl32

imm32

Exports

Exports

Sections

.text Size: 117KB - Virtual size: 376KB

.rsrc Size: 569KB - Virtual size: 888KB

.idata Size: 1KB - Virtual size: 4KB

.data Size: 512B - Virtual size: 1.6MB

.data Size: 1.3MB - Virtual size: 1.3MB

.data Size: 1024B - Virtual size: 4KB

.text
Size: 117KB - Virtual size: 376KB

.rsrc
Size: 569KB - Virtual size: 888KB

.idata
Size: 1KB - Virtual size: 4KB

.data
Size: 512B - Virtual size: 1.6MB

.data
Size: 1.3MB - Virtual size: 1.3MB

.data
Size: 1024B - Virtual size: 4KB