c06b96c8638e99f254a9312a8aac99ad_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

c06b96c8638e99f254a9312a8aac99ad_JaffaCakes118
Size

2.7MB
MD5

c06b96c8638e99f254a9312a8aac99ad
SHA1

d525be3a28c4333c3f425d7912eb9ae543f75170
SHA256

09ae5c1be653becf2eda20ae2a8133e74addcd08f5c46122cdcbf6925ceb1be7
SHA512

282b74a802a1ce5bad2afa4eae1ef87f1c87c96226b40a2a3f8e24e4b4fe5578dee03ceb92fe355a7c730210bcf403d2cce51933f7e3a4a4c7498be56c713374
SSDEEP

49152:nAU1Ho6OYS9gbDJ0t5ba2gPtMl+OUEgYP4O7Nui0YawU9gF5W/VnPiDSJLy:nAU1IUS96kM5Mc4tPPqwkhdmSc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c06b96c8638e99f254a9312a8aac99ad_JaffaCakes118

Files

c06b96c8638e99f254a9312a8aac99ad_JaffaCakes118
.exe windows:5 windows x86 arch:x86

b5bc0461128dcbf231ea95b34c426381

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32 winmm

DestroyAcceleratorTable n3:

winmm

midiOutReset

ws2_32

closesocket

msvfw32

DrawDibDraw

avifil32

AVIStreamInfoA

kernel32

FormatMessageA

user32

GetSysColorBrush

gdi32

GetROP2

winspool.drv

DocumentPropertiesA

comdlg32

GetFileTitleA

advapi32

RegCreateKeyExA

shell32

ShellExecuteA

ole32

CoRevokeClassObject

oleaut32

SafeArrayGetLBound

comctl32

ord17

oledlg

ord8

msvcrt

malloc

iphlpapi

GetAdaptersInfo

psapi

GetMappedFileNameW

Sections

.text
Size: 1.5MB - Virtual size: 2.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

,klvc29B
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

,klvc29B
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b5bc0461128dcbf231ea95b34c426381

Headers

File Characteristics

Imports

user32 winmm

winmm

ws2_32

msvfw32

avifil32

kernel32

user32

gdi32

winspool.drv

comdlg32

advapi32

shell32

ole32

oleaut32

comctl32

oledlg

msvcrt

iphlpapi

psapi

Sections

.text Size: 1.5MB - Virtual size: 2.4MB

,klvc29B Size: 1.2MB - Virtual size: 1.2MB

.idata Size: 16KB - Virtual size: 16KB

.rsrc Size: 8KB - Virtual size: 8KB

,klvc29B Size: 4KB - Virtual size: 4KB

.text
Size: 1.5MB - Virtual size: 2.4MB

,klvc29B
Size: 1.2MB - Virtual size: 1.2MB

.idata
Size: 16KB - Virtual size: 16KB

.rsrc
Size: 8KB - Virtual size: 8KB

,klvc29B
Size: 4KB - Virtual size: 4KB