7235a8390604756c6a367b226c226dcf_JaffaCakes118

General

Target

7235a8390604756c6a367b226c226dcf_JaffaCakes118
Size

98KB
MD5

7235a8390604756c6a367b226c226dcf
SHA1

6009253df894c6f87ffabaa3aa3e93b2bb3b3149
SHA256

8b8c5a9c39a363ba53d44bb0f1de80242287a967a8ab911398459e795eae0e44
SHA512

51f6776e9773e5ee9169e9e818d4574d1e4fe74bdaf5ee3834ef6174014dce1dbfb2fff236418e436ae0ee4efb93f56bf1e187304537920c558291b652cde34c
SSDEEP

1536:rwX0hub8SHERIyKwqHwO9rA+T0B4eTfJ8mrcp2sT6MFWmu46GrAHWHQM6:02LR1KJsoezJ8lcsBu4IOQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7235a8390604756c6a367b226c226dcf_JaffaCakes118

Files

7235a8390604756c6a367b226c226dcf_JaffaCakes118
.exe windows:5 windows x86 arch:x86

e842be0bf51ec0757db5a20947a51274

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoUnmarshalInterface
CoCreateGuid
CoSetProxyBlanket
CoTaskMemAlloc
PropVariantCopy
CoGetObjectContext
CoRevertToSelf
GetHGlobalFromStream
CreateBindCtx
CoInitializeSecurity
OleCreateLink
CreateStreamOnHGlobal

kernel32

LoadLibraryExW
WriteConsoleW
Sleep
GetDriveTypeA
ExitProcess
GetOEMCP
GetProcessHeap
lstrcmpW
TerminateProcess
IsBadWritePtr
LoadLibraryW
GetCurrentProcessId
GetStdHandle
CreateFileW
VirtualAlloc
OpenEventA
GetSystemTimeAsFileTime
HeapCreate
GetCurrentThreadId
lstrcpyW
GetFileSize
HeapFree
TlsSetValue
OpenMutexA
RtlUnwind
GetFileAttributesA

msvcrt

_ultoa
__p__fmode
realloc
memcpy
__p__commode
isspace
__set_app_type
??0exception@@QAE@ABV0@@Z
wcspbrk
strrchr
wcscat
__setusermatherr
__dllonexit

comctl32

ImageList_Draw
ImageList_Create
InitCommonControlsEx
CreatePropertySheetPageW
InitCommonControls
ImageList_Destroy
ImageList_ReplaceIcon

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 31KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 34KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 489B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e842be0bf51ec0757db5a20947a51274

Headers

File Characteristics

Imports

ole32

kernel32

msvcrt

comctl32

Sections

.text Size: 4KB - Virtual size: 3KB

.rdata Size: 27KB - Virtual size: 26KB

.data Size: 31KB - Virtual size: 50KB

.idata Size: 34KB - Virtual size: 33KB

.reloc Size: 512B - Virtual size: 489B

.text
Size: 4KB - Virtual size: 3KB

.rdata
Size: 27KB - Virtual size: 26KB

.data
Size: 31KB - Virtual size: 50KB

.idata
Size: 34KB - Virtual size: 33KB

.reloc
Size: 512B - Virtual size: 489B