78296a69980d7df76601e609a6e952cc_JaffaCakes118

General

Target

78296a69980d7df76601e609a6e952cc_JaffaCakes118
Size

176KB
MD5

78296a69980d7df76601e609a6e952cc
SHA1

e9dea8a8f4f6a12deedaa84e4c336db83827127c
SHA256

37d2929517e64a23b6150b73df7319e5cd7ddd95d59d22e06e92889b2fd21920
SHA512

cd7bb5519d0515c633755f42c37c6b22b97ade775a914b09cf370d8e95f331ba0eebc0fb9872283b3f2ca4c4103d56a8d488b6cc8dfab19ae7a122a8397627e3
SSDEEP

3072:QuoyougWGuvRCunL8LmwfLiyKWvaXaBuot2U2CHuWtrFa07iQAKuD2BshoJI+Ov:84gW/vGeyKmaXasopOiFa0o/DnhoJxO8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
78296a69980d7df76601e609a6e952cc_JaffaCakes118

Files

78296a69980d7df76601e609a6e952cc_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b118c8a003dae26acc25c915c1ab90f4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

gdi32

GetOutlineTextMetricsW
GetTextMetricsW
CreateFontIndirectW
DeleteObject
SelectObject
AddFontResourceExW

user32

SetTimer
PostThreadMessageW
wsprintfW
GetDC
DispatchMessageW
CharNextW
CharUpperW
GetWindowLongA
TranslateMessage
GetMessageW
KillTimer
UnregisterClassA

shell32

SHGetFileInfoW

oleacc

LresultFromObject
CreateStdAccessibleObject

psapi

GetProcessMemoryInfo

kernel32

GlobalFree
FillConsoleOutputAttribute
GlobalAlloc
MultiByteToWideChar
GetProcessPriorityBoost
InitializeCriticalSection
lstrcpyA
GetACP
GetLastError
lstrcmpiW
lstrcpyW
GetTickCount
EnumResourceNamesW
WideCharToMultiByte
OutputDebugStringW
CreateFileMappingW
GetCPInfo
FreeEnvironmentStringsW
LockResource
lstrlenW
FindClose
GetModuleHandleW

advapi32

RegOpenKeyExW
RegCreateKeyExW
RegEnumKeyExW
RegCloseKey
RegDeleteValueW
RegQueryInfoKeyW
RegDeleteKeyW
RegSetValueExW

ole32

StringFromGUID2
CoTaskMemAlloc
CoUninitialize
CoInitialize
CoRevokeClassObject
CoTaskMemFree
CoCreateInstance
CoRegisterClassObject
CoTaskMemRealloc
StringFromCLSID

Sections

.text
Size: 110KB - Virtual size: 109KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 62KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.isete
Size: 1024B - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b118c8a003dae26acc25c915c1ab90f4

Headers

File Characteristics

Imports

gdi32

user32

shell32

oleacc

psapi

kernel32

advapi32

ole32

Sections

.text Size: 110KB - Virtual size: 109KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 62KB - Virtual size: 61KB

.isete Size: 1024B - Virtual size: 116KB

.text
Size: 110KB - Virtual size: 109KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 62KB - Virtual size: 61KB

.isete
Size: 1024B - Virtual size: 116KB