dc1c4add0e86b1aea520fa4b04e7aacd_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

dc1c4add0e86b1aea520fa4b04e7aacd_JaffaCakes118
Size

124KB
MD5

dc1c4add0e86b1aea520fa4b04e7aacd
SHA1

17ffe5927ecfabe9b352d2aaf899c63f3e024533
SHA256

671b3c57f8a60a44c1a5221225afb8dc3a312c55a27e78f5ca185cda6af534a9
SHA512

9ab3408e5364bf7bbfaca6254e4e2ece8817139456a6561db33de20f492b819e6d4792529f0436312878abbc23d4a200053114bacb090cbd0bbbd9085821842e
SSDEEP

1536:ez4IxRPBl6ekZHQC0td1nULzTrQCITycBlHLRB4yoIr/DozpKmzbHbAh:RIxRPsS3tULr6ll0K/DW1zc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
dc1c4add0e86b1aea520fa4b04e7aacd_JaffaCakes118

Files

dc1c4add0e86b1aea520fa4b04e7aacd_JaffaCakes118
.exe windows:6 windows x86 arch:x86

6d9a62f9580265cba5f01546abb224a1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetClassLongW
GetDlgItem
IsCharUpperW
LoadKeyboardLayoutA

kernel32

VerifyVersionInfoW
SetConsoleCP
GetNamedPipeServerSessionId
PulseEvent
FlsGetValue
GetHandleInformation
TlsGetValue
GetLogicalProcessorInformation

winscard

SCardGetStatusChangeA

ole32

OleLockRunning

gdi32

GetLayout
SetBitmapDimensionEx

advapi32

GetSecurityDescriptorGroup

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

CONST
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6d9a62f9580265cba5f01546abb224a1

Headers

DLL Characteristics

File Characteristics

Imports

user32

kernel32

winscard

ole32

gdi32

advapi32

Sections

.text Size: 8KB - Virtual size: 7KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 20KB - Virtual size: 23KB

.CRT Size: 28KB - Virtual size: 27KB

.reloc Size: 28KB - Virtual size: 24KB

CONST Size: 12KB - Virtual size: 8KB

.crt Size: 12KB - Virtual size: 10KB

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 4KB - Virtual size: 192B

.text
Size: 8KB - Virtual size: 7KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 20KB - Virtual size: 23KB

.CRT
Size: 28KB - Virtual size: 27KB

.reloc
Size: 28KB - Virtual size: 24KB

CONST
Size: 12KB - Virtual size: 8KB

.crt
Size: 12KB - Virtual size: 10KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 4KB - Virtual size: 192B