78f9722969952c86d85b16b303a500f0_JaffaCakes118

General

Target

78f9722969952c86d85b16b303a500f0_JaffaCakes118
Size

92KB
MD5

78f9722969952c86d85b16b303a500f0
SHA1

1e0c639208e1e51e887e5f7e2daf603138bed714
SHA256

9734202d5952b9c815cb0d5d807a9cb4271ab39a52aee8145e62ff62c6d7f4a4
SHA512

86c34eb3b89cc4b747d36612387e8d6cfe9de9c8584e0cdad6c691fb3d6a365592c2258c4488cc10a6c68b80f41a0ebe7187df082e5e31db1d14a522c3e179f3
SSDEEP

1536:zGLyK7CBdZZwbFroIysbBUPx6MwlUszLH3DFO31MRBh9noERgFNdyO0tP9PlY/:yLPmB8oQVUP2UyjDFUMfh9pRCNEO019C

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
78f9722969952c86d85b16b303a500f0_JaffaCakes118

Files

78f9722969952c86d85b16b303a500f0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1fd88ab8517fa152b73cedc86dea98cf

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

GetOpenFileNameW
ChooseColorW
ChooseFontW
CommDlgExtendedError
FindTextA
FindTextW
GetFileTitleA
GetOpenFileNameA
ChooseColorA
GetSaveFileNameA
GetSaveFileNameW
PrintDlgA
PrintDlgExA
ReplaceTextW
dwLBSubclass

user32

BeginPaint
LoadImageA
InflateRect
GetUserObjectSecurity
GetUpdateRgn
GetSysColor
GetCursorPos
DispatchMessageA
RegisterWindowMessageA
SetClassLongA
SetPropA
SetWindowPlacement
SetWindowPos

kernel32

GetACP
DnsHostnameToComputerNameW
ConvertThreadToFiber
CloseHandle
AllocConsole
VerLanguageNameA
Thread32First
SetSystemTimeAdjustment
SetComputerNameExA
OpenProcess
MapUserPhysicalPagesScatter
LoadLibraryExA
LCMapStringA
IsBadStringPtrA
HeapCreate
HeapAlloc
GetVolumePathNameA
GetVersionExA
GetUserDefaultLangID
GetTimeZoneInformation
GetStartupInfoA
GetModuleHandleA
GetCommandLineA
GetCPInfoExA
EnumSystemLanguageGroupsW
FindVolumeClose
FindFirstVolumeA
ExitProcess
EnumResourceTypesA

ole32

StringFromGUID2
CoTaskMemFree
CoTaskMemAlloc
CoFileTimeNow
CLSIDFromString
CoBuildVersion
CoCreateInstance
CoGetMalloc

dbghelp

UnmapDebugInformation
SymFromAddr
MiniDumpWriteDump

comctl32

FlatSB_GetScrollProp
FlatSB_SetScrollRange
ImageList_DragEnter
DrawStatusTextW

Sections

.text
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1fd88ab8517fa152b73cedc86dea98cf

Headers

File Characteristics

Imports

comdlg32

user32

kernel32

ole32

dbghelp

comctl32

Sections

.text Size: 52KB - Virtual size: 51KB

.data Size: 28KB - Virtual size: 27KB

.rsrc Size: 4KB - Virtual size: 3KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 52KB - Virtual size: 51KB

.data
Size: 28KB - Virtual size: 27KB

.rsrc
Size: 4KB - Virtual size: 3KB

.reloc
Size: 4KB - Virtual size: 3KB