d5f55b06604876cffd57800521b01e7f_JaffaCakes118

General

Target

d5f55b06604876cffd57800521b01e7f_JaffaCakes118
Size

152KB
MD5

d5f55b06604876cffd57800521b01e7f
SHA1

00f1aead9cb0c090fa09af0823a3963b7b67461c
SHA256

2f2792c43bb2d6efa05d0742ab4e9cb180430716a1c10e3c9161f929d62d8c78
SHA512

6483249294122c21328ff1e3a1400c42f46c5bd7a202153be29e13280ebc806ea477ade9cddcb216c8d4da7b80ea71453b5d2d92a55a77a9cc5af8119ededf83
SSDEEP

3072:NlQMNhwQT5bpxX2wKEbcwMSiTGKxffH6mgr2CU5fr+ROuNh4xxomyFIaynMrrn:NlQMNT5dxmGo1PdxfPuBU5z+ROuNh4xG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d5f55b06604876cffd57800521b01e7f_JaffaCakes118

Files

d5f55b06604876cffd57800521b01e7f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

804398fb34cd07a6a456f515b08245ca

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetTextColor
GetBkColor
GetMapMode
GetTextExtentPoint32W
CreateFontIndirectW
CreateSolidBrush
GetStockObject
CreatePatternBrush
DeleteDC

ole32

CoCreateGuid
StringFromCLSID
CoTaskMemAlloc
CLSIDFromString
CLSIDFromProgID
OleLockRunning
StringFromGUID2
CoAllowSetForegroundWindow
OleUninitialize
OleInitialize
CreateStreamOnHGlobal
CoCreateInstance
CoInitializeSecurity
CoSetProxyBlanket
CoInitializeEx
CoUninitialize
CoTaskMemFree
CoGetClassObject

shlwapi

PathIsUNCW
PathStripToRootW
PathFindFileNameW
PathFindExtensionW
PathCombineW

shell32

SHGetFolderPathW
DragQueryFileW
DragFinish
CommandLineToArgvW
SHFileOperationW

comdlg32

GetFileTitleW

kernel32

GetLocaleInfoW
ExpandEnvironmentStringsW
GetCurrentThread
LZCopy
CreateProcessW
HeapAlloc
GetProcessHeap
HeapFree
GetVersionExW
SizeofResource
LockResource
LoadResource
FindResourceW

oleaut32

OleLoadPictureEx
GetRecordInfoFromTypeInfo
VarI4FromDec
SysFreeString

Sections

.text
Size: 76KB - Virtual size: 116KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

804398fb34cd07a6a456f515b08245ca

Headers

File Characteristics

Imports

gdi32

ole32

shlwapi

shell32

comdlg32

kernel32

oleaut32

Sections

.text Size: 76KB - Virtual size: 116KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 72KB - Virtual size: 71KB

.reloc Size: 512B - Virtual size: 296B

.text
Size: 76KB - Virtual size: 116KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 72KB - Virtual size: 71KB

.reloc
Size: 512B - Virtual size: 296B