c24914a09d79954a922bdc8de49b77a0_JaffaCakes118

General

Target

c24914a09d79954a922bdc8de49b77a0_JaffaCakes118
Size

118KB
MD5

c24914a09d79954a922bdc8de49b77a0
SHA1

2acf75064e9bd3305d5ad53d41c34d8fabac82b3
SHA256

5bba84d14238cfb75d7bf95da023bdaa821b950df95496af91833afdcc211f4c
SHA512

a44ec4a02a35dbbe0f48388a288f60ab84b255d76e6f49b43cd432c072418df90918a4b4a615863079d1aa826c5520696b4d8ce936cc7dcd252f2e262456eb90
SSDEEP

1536:SS9RNcMoh9VAYcjyVloTphOkT5M2TROWxBbWONhLnb9+6tc/COGAdMpjAa6x5DpS:DNBoLKY7aL20z2abb9+6D8RxlzUX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c24914a09d79954a922bdc8de49b77a0_JaffaCakes118

Files

c24914a09d79954a922bdc8de49b77a0_JaffaCakes118
.exe windows:5 windows x86 arch:x86

5c13f87713813a85eb47a2a3f3ae9f46

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

avifil32

AVISaveOptionsFree
AVIFileRelease
AVIFileCreateStreamW
EditStreamSetName
AVIStreamReadFormat
AVIStreamGetFrameOpen
EditStreamSetInfoA
AVIMakeCompressedStream
EditStreamClone
AVIStreamFindSample
AVIMakeFileFromStreams
AVIStreamRelease
AVIFileInit
AVIMakeStreamFromClipboard
AVISaveW
AVIFileOpenW
AVIStreamInfo
AVIStreamStart
AVISaveV
AVIStreamGetFrame
IID_IAVIFile
AVIStreamGetFrameClose

kernel32

GetStringTypeW
GetVersion
GetStringTypeA
GetThreadLocale
FreeEnvironmentStringsA
lstrcmpiA
GetEnvironmentStrings
lstrcmpA
GetFileAttributesW
lstrcmpW
FreeEnvironmentStringsW
GetModuleHandleW
CloseHandle
HeapCreate
QueryPerformanceCounter
GetEnvironmentStringsW
CreateFileW
VirtualAlloc
SetHandleCount
LCMapStringW
GetSystemInfo
LCMapStringA
GetOEMCP
GetSystemTime
GetEnvironmentStringsA

gdi32

EnumFontFamiliesExW
GetDeviceCaps
GetPixel
CreateICA
CreatePen
CreateBitmapIndirect

user32

SetTimer
GetCursorPos
SetRectEmpty
GetRawInputDeviceList
InvalidateRect
IsWindowVisible
FindWindowW
DrawMenuBarTemp
FindWindowA
GetDesktopWindow

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 54KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 55KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5c13f87713813a85eb47a2a3f3ae9f46

Headers

DLL Characteristics

File Characteristics

Imports

avifil32

kernel32

gdi32

user32

Sections

.text Size: 6KB - Virtual size: 5KB

.rdata Size: 54KB - Virtual size: 53KB

.data Size: 1KB - Virtual size: 1KB

.rsrc Size: 55KB - Virtual size: 55KB

.text
Size: 6KB - Virtual size: 5KB

.rdata
Size: 54KB - Virtual size: 53KB

.data
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 55KB - Virtual size: 55KB