84840dd9c091c1f3f21c9f20ccca25fb_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

84840dd9c091c1f3f21c9f20ccca25fb_JaffaCakes118
Size

2.6MB
MD5

84840dd9c091c1f3f21c9f20ccca25fb
SHA1

8b728bbd96d70449990a7ac34d26f5db6352c392
SHA256

967565a5af44dba90d7eb0f3ee778849c401ca1e2b7cbdaa407672755851abbe
SHA512

ddd1814f161450ce7eca39afc4293418846146293e9a6b09725d581fb2a7ecaa628a6cccd7fa51a0de7d2791b3a936c0f386bf9068fd6b96a12a2a162c6585ca
SSDEEP

49152:h5LbNF+xC8Kz2hjAzuMy3frWrh7SG3+GpPvLPrOnUE2tKsTZ4qp:h5fNT8KcqrUG3NPvLPrptKsTZ4qp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
84840dd9c091c1f3f21c9f20ccca25fb_JaffaCakes118

Files

84840dd9c091c1f3f21c9f20ccca25fb_JaffaCakes118
.exe windows:5 windows x86 arch:x86

e8d4de5db00133a63269899341a3bce5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStdHandle

user32

SetWindowRgn

gdi32

GetLayout

msimg32

AlphaBlend

comdlg32

GetFileTitleW

winspool.drv

OpenPrinterW

advapi32

RegQueryValueExW

shell32

DragQueryFileW

comctl32

InitCommonControlsEx

shlwapi

PathIsUNCW

ole32

OleIsCurrentClipboard

oleaut32

VariantInit

oledlg

OleUIBusyW

ws2_32

WSACleanup

gdiplus

GdipDeleteGraphics

oleacc

AccessibleObjectFromWindow

imm32

ImmReleaseContext

winmm

PlaySoundW

psapi

GetModuleInformation

msvcrt

malloc

iphlpapi

GetAdaptersInfo

Sections

.text
Size: 899KB - Virtual size: 2.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tadata
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 384KB - Virtual size: 388KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tadata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e8d4de5db00133a63269899341a3bce5

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

oledlg

ws2_32

gdiplus

oleacc

imm32

winmm

psapi

msvcrt

iphlpapi

Sections

.text Size: 899KB - Virtual size: 2.4MB

.tadata Size: 1.3MB - Virtual size: 1.3MB

.idata Size: 1KB - Virtual size: 4KB

.rsrc Size: 384KB - Virtual size: 388KB

.tadata Size: 4KB - Virtual size: 4KB

.text
Size: 899KB - Virtual size: 2.4MB

.tadata
Size: 1.3MB - Virtual size: 1.3MB

.idata
Size: 1KB - Virtual size: 4KB

.rsrc
Size: 384KB - Virtual size: 388KB

.tadata
Size: 4KB - Virtual size: 4KB