db3db19b83fa5c5872610d5d7af9c0ed_JaffaCakes118

General

Target

db3db19b83fa5c5872610d5d7af9c0ed_JaffaCakes118
Size

174KB
MD5

db3db19b83fa5c5872610d5d7af9c0ed
SHA1

c83297bcfb0985308e240905dd0d7ac3668b4228
SHA256

2e607804489a9337e90c10f702435f45906a49d551395bdf98627ad540cbe330
SHA512

ddb5909361f40a037ae84f2c20c1d9776ceaf2a58b1baf289a2320cf536380d3a85541b885f43903483fb89182c7daf81485111cc8f5e274d9a90d823063e3bd
SSDEEP

3072:YzlqVoqvjmUtQ6IoA9jZ/+EhAf5tcUyO7btyyOPRHn0ZUaJNNjh+sh:njO6IoAPG9tyetyysaJvhZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
db3db19b83fa5c5872610d5d7af9c0ed_JaffaCakes118

Files

db3db19b83fa5c5872610d5d7af9c0ed_JaffaCakes118
.exe windows:4 windows x86 arch:x86

278affe8fd5703b215c8de758d99f79b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

DispatchMessageW
CharNextW
wsprintfW
PostThreadMessageW
CharUpperW
SendMessageA
KillTimer
GetDC
SetTimer
GetMessageW
TranslateMessage
UnregisterClassA

advapi32

RegCloseKey
RegQueryInfoKeyW
RegCreateKeyExW
RegDeleteValueW
RegEnumKeyExW
RegDeleteKeyW
RegOpenKeyExW
RegSetValueExW

ole32

CoTaskMemAlloc
CoUninitialize
CoRegisterClassObject
CoTaskMemFree
CoInitialize
CoCreateInstance
CoTaskMemRealloc
StringFromGUID2
CoRevokeClassObject
StringFromCLSID

kernel32

lstrlenW
lstrcpyA
OutputDebugStringW
lstrcpyW
GetProcessId
LockResource
GlobalAlloc
GetTickCount
FindClose
MultiByteToWideChar
EnumResourceNamesW
lstrcpyA
GetACP
GlobalFree
GetLastError
WideCharToMultiByte
lstrcmpiW
FreeEnvironmentStringsW
InitializeCriticalSection
GetCPInfo
CreateFileMappingW
GetModuleHandleW

shlwapi

PathCombineW
PathFileExistsW

oleacc

LresultFromObject
CreateStdAccessibleObject

Sections

.text
Size: 104KB - Virtual size: 103KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.isete
Size: 1024B - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

278affe8fd5703b215c8de758d99f79b

Headers

File Characteristics

Imports

user32

advapi32

ole32

kernel32

shlwapi

oleacc

Sections

.text Size: 104KB - Virtual size: 103KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 66KB - Virtual size: 66KB

.isete Size: 1024B - Virtual size: 120KB

.text
Size: 104KB - Virtual size: 103KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 66KB - Virtual size: 66KB

.isete
Size: 1024B - Virtual size: 120KB