96ad75713da12e794df2bd63773825f1_JaffaCakes118

General

Target

96ad75713da12e794df2bd63773825f1_JaffaCakes118
Size

105KB
MD5

96ad75713da12e794df2bd63773825f1
SHA1

09481dd7a22f160a23cb6c5f804d9cf2a8c2d41d
SHA256

5c45f08653ee7a7cd9e785e26c734e4e0737f805d89f563390c8a632a0c5b988
SHA512

3f3083b973e6739b91e0d4765deadf1f44da8df3b3ce1bce15b4636f10918e67e2a72db11cd4502f87b67fa916149f2c01eea8fe9d40051bdea1b1ebfadd990c
SSDEEP

1536:kOczC97gFhf3+0f2wPxvWgJe41vuQ0EBw9nkASkw4z8jdiV2:kLu9qV+Uh7Jn1vpzUkAShkuQV2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
96ad75713da12e794df2bd63773825f1_JaffaCakes118

Files

96ad75713da12e794df2bd63773825f1_JaffaCakes118
.exe windows:5 windows x86 arch:x86

e294db0262c806d916b20f416605fda8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

VirtualAlloc
lstrlenW
MultiByteToWideChar
OutputDebugStringA
GetModuleHandleA
GetVersion
GetCPInfo
VirtualProtect
GetConsoleOutputCP
GetStartupInfoA
GetExitCodeProcess
CreateDirectoryA
GetFileAttributesW

user32

LoadStringA
InvalidateRect
GetActiveWindow
DrawIcon
ReleaseCapture
SystemParametersInfoA
GetSysColor
PtInRect
ScreenToClient

msvcrt

memset
_adjust_fdiv
memcmp
__setusermatherr
towupper
_XcptFilter
_except_handler3
_acmdln
fprintf
__getmainargs
__p__fmode
__p__commode
_initterm
sqrt
exit
__set_app_type
_fileno
printf
strpbrk

oleaut32

VariantClear
GetActiveObject
LoadTypeLib

shell32

DragQueryFileW
SHGetSpecialFolderPathA
SHGetFolderPathW
SHGetSpecialFolderPathW
Shell_NotifyIconW

ole32

GetRunningObjectTable
CoTaskMemFree
CoSetProxyBlanket
IsAccelerator
PropVariantClear
CoFreeUnusedLibraries
OleUninitialize
CoGetMalloc
OleInitialize

advapi32

OpenServiceA
RegCreateKeyA
OpenThreadToken
CryptReleaseContext
RegQueryInfoKeyA
RegQueryValueA

comctl32

ImageList_AddMasked
ImageList_DrawEx
ImageList_Add
ImageList_LoadImageA
ImageList_GetImageInfo
ImageList_GetBkColor
ImageList_Write
ImageList_SetDragCursorImage

Sections

.text
Size: 75KB - Virtual size: 74KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e294db0262c806d916b20f416605fda8

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

oleaut32

shell32

ole32

advapi32

comctl32

Sections

.text Size: 75KB - Virtual size: 74KB

.data Size: 4KB - Virtual size: 3KB

.rsrc Size: 25KB - Virtual size: 25KB

.text
Size: 75KB - Virtual size: 74KB

.data
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 25KB - Virtual size: 25KB