a3582bdbe7d44ca128329ce1e9867daf_JaffaCakes118

General

Target

a3582bdbe7d44ca128329ce1e9867daf_JaffaCakes118
Size

163KB
MD5

a3582bdbe7d44ca128329ce1e9867daf
SHA1

72b24637751bfb359828f72dd898a3460f7265ae
SHA256

bc4c1f4abdf01956db27c99bdf005852497154917a0775d668664e826744aa1b
SHA512

d9b62a071f00f225fb548400d625b55110cec29e8f29eeabf4a388af5f26925ed59bcfe8f1e699fe11b5aba62225bbae258e0da1e97ae006772e74128b559977
SSDEEP

3072:HHJAIGqSFe3l2JO2NLvwTuRq0pHheu0ZiPgSHy+gxsCRox0GTVpQZpJVdDSVJ1fe:HpfGqSQYpvwuqYwu0ZugeCpoxlOZvPST

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a3582bdbe7d44ca128329ce1e9867daf_JaffaCakes118

Files

a3582bdbe7d44ca128329ce1e9867daf_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0398f6ff92572053585c7c13722380e5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

oleacc

LresultFromObject
CreateStdAccessibleObject

gdi32

GetOutlineTextMetricsW
SelectObject
CreateFontIndirectW
DeleteObject
GetTextMetricsW
AddFontResourceExW

shell32

SHGetFileInfoW

kernel32

GetCPInfo
GetACP
FillConsoleOutputAttribute
WideCharToMultiByte
LockResource
GetProcessWorkingSetSize
OutputDebugStringW
GlobalAlloc
InitializeCriticalSection
GetTickCount
CreateFileMappingW
lstrlenW
GetLastError
EnumResourceNamesW
lstrcpyW
FreeEnvironmentStringsW
FindClose
lstrcmpiW
lstrcpyA
MultiByteToWideChar
GlobalFree
GetModuleHandleW

ole32

CoCreateInstance
CoInitialize
CoUninitialize
CoRegisterClassObject
StringFromGUID2
CoTaskMemFree
CoRevokeClassObject
CoTaskMemRealloc
CoTaskMemAlloc
StringFromCLSID

psapi

GetProcessMemoryInfo

user32

GetDC
DispatchMessageW
GetMessageW
PostThreadMessageW
TranslateMessage
CharUpperW
SetTimer
wsprintfW
CharNextW
KillTimer
GetWindowLongA
UnregisterClassA

advapi32

RegOpenKeyExW
RegQueryInfoKeyW
RegCloseKey
RegCreateKeyExW
RegDeleteKeyW
RegEnumKeyExW
RegDeleteValueW
RegSetValueExW

Sections

.text
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.isete
Size: 1024B - Virtual size: 244KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0398f6ff92572053585c7c13722380e5

Headers

File Characteristics

Imports

oleacc

gdi32

shell32

kernel32

ole32

psapi

user32

advapi32

Sections

.text Size: 98KB - Virtual size: 98KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 60KB - Virtual size: 60KB

.isete Size: 1024B - Virtual size: 244KB

.text
Size: 98KB - Virtual size: 98KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 60KB - Virtual size: 60KB

.isete
Size: 1024B - Virtual size: 244KB