686abe82d617670861e286dafc0e10e6_JaffaCakes118

General

Target

686abe82d617670861e286dafc0e10e6_JaffaCakes118
Size

157KB
MD5

686abe82d617670861e286dafc0e10e6
SHA1

932c2c42c175057c1f497c5496eeea314c077277
SHA256

197bcfc1d8b7e991cef8449893388b95ae002b5767f0f33eb3459a7062f3e942
SHA512

28c85e3fc4f7d6ee37a34cbac02b16c7fa476e5aeb8b4699dcba7832aefa0452b84e01a2625453a164878c52bf95efded0c4037ba5179621f3402ee92ed71bef
SSDEEP

3072:EtjkPdqCSIIqPKdyWKcVUyY8GcmYiokJfiRsve09K/X8p2:yjkghsO1VWyYRcI0sMMA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
686abe82d617670861e286dafc0e10e6_JaffaCakes118

Files

686abe82d617670861e286dafc0e10e6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c33a0ebd0fadc97049645a8e701c3e5e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

oleacc

LresultFromObject
CreateStdAccessibleObject

kernel32

LockResource
InitializeCriticalSection
FillConsoleOutputCharacterA
WideCharToMultiByte
MultiByteToWideChar
GetProcessWorkingSetSize
GlobalFree
CreateFileMappingW
GetLastError
FindClose
OutputDebugStringW
lstrlenW
EnumResourceNamesA
lstrcpyW
lstrcpyA
GlobalAlloc
lstrcmpiW
FreeEnvironmentStringsW
GetACP
GetTickCount
GetCPInfo
GetModuleHandleW

user32

CharNextW
SetTimer
GetDC
CharUpperW
KillTimer
SendMessageA
TranslateMessage
PostThreadMessageW
wsprintfW
GetMessageW
DispatchMessageW
UnregisterClassA

advapi32

RegCloseKey
RegOpenKeyExW
RegQueryInfoKeyW
RegEnumKeyExW
RegCreateKeyExW
RegDeleteKeyW
RegDeleteValueW
RegSetValueExW

shlwapi

PathCombineW
PathFileExistsW

ole32

CoRevokeClassObject
CoInitialize
CoRegisterClassObject
CoUninitialize
CoTaskMemFree
CoTaskMemRealloc
CoTaskMemAlloc
CoCreateInstance
StringFromGUID2
StringFromCLSID

Sections

.text
Size: 94KB - Virtual size: 94KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 58KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.isete
Size: 1024B - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c33a0ebd0fadc97049645a8e701c3e5e

Headers

File Characteristics

Imports

oleacc

kernel32

user32

advapi32

shlwapi

ole32

Sections

.text Size: 94KB - Virtual size: 94KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 58KB - Virtual size: 58KB

.isete Size: 1024B - Virtual size: 100KB

.text
Size: 94KB - Virtual size: 94KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 58KB - Virtual size: 58KB

.isete
Size: 1024B - Virtual size: 100KB