fc73c262a3ad9cf67bf22d7de80baeee_JaffaCakes118

General

Target

fc73c262a3ad9cf67bf22d7de80baeee_JaffaCakes118
Size

148KB
MD5

fc73c262a3ad9cf67bf22d7de80baeee
SHA1

3fe5bfcdf9a9af82d697b1c0fafb817a1aa6ca19
SHA256

26bd6910c0f37c714f1b3ff2fcf205ec3911edaccd4606e651f8aa827f296043
SHA512

b5d3605a1a84086916338b34edd4a20bd00c99709a2c8397ae2ce8641b354441b3160044451e958905032960c3fd187770dc647e23b8dea4eb77baa82d3ab188
SSDEEP

3072:m2Ha3Uyrj3V27uNzF8f08XqarzpcfVJF9i5U4BBgLyTOgYnv:HR6za56a+M5XPgWKg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fc73c262a3ad9cf67bf22d7de80baeee_JaffaCakes118

Files

fc73c262a3ad9cf67bf22d7de80baeee_JaffaCakes118
.exe windows:5 windows x86 arch:x86

b5622226b0d6dc88854cf06c31444bf5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
GetStartupInfoA
GetFileType
InterlockedIncrement
lstrcpynA
GetSystemDirectoryA
GetLocalTime
GetThreadLocale
GlobalHandle
VirtualProtect
GetModuleHandleW
RtlUnwind
GetDriveTypeA
GetStringTypeExA

user32

InflateRect
SetWindowsHookExA
GetDCEx
GetSysColor
GetDesktopWindow
ScreenToClient
InvalidateRect

msvcrt

log10
_stat
fsetpos
__set_app_type
_XcptFilter
_acmdln
wcstombs
__setusermatherr
_except_handler3
rewind
exit
_dup
__getmainargs
fgetc
__p__fmode
_snwprintf
_adjust_fdiv
__p__commode
_read
_initterm

oleaut32

SysStringByteLen
LoadTypeLib
SafeArrayGetElement
SysReAllocStringLen
VariantInit
SysAllocStringLen
SafeArrayUnaccessData
VariantClear
SysAllocStringByteLen

ole32

StringFromGUID2
IsAccelerator
IIDFromString
OleUninitialize
CreateILockBytesOnHGlobal
CoReleaseMarshalData
CoGetClassObject
CoGetMalloc
IsEqualGUID

comctl32

ImageList_SetDragCursorImage
ImageList_Read
ImageList_GetBkColor
ImageList_Destroy
ImageList_GetIconSize
ImageList_GetIcon

shell32

ShellExecuteExW
SHAddToRecentDocs
ExtractIconW
ShellExecuteW
SHChangeNotify
SHGetFolderPathW
SHGetDiskFreeSpaceExW
DragFinish
SHGetDesktopFolder
SHCreateDirectoryExW

advapi32

RegDeleteValueA
RegOpenKeyExW
RegEnumKeyA
RegCloseKey
RegCreateKeyA

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 136KB - Virtual size: 135KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b5622226b0d6dc88854cf06c31444bf5

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

oleaut32

ole32

comctl32

shell32

advapi32

Sections

.text Size: 5KB - Virtual size: 4KB

.rdata Size: 136KB - Virtual size: 135KB

.data Size: 6KB - Virtual size: 6KB

.text
Size: 5KB - Virtual size: 4KB

.rdata
Size: 136KB - Virtual size: 135KB

.data
Size: 6KB - Virtual size: 6KB