0cb7ac1df851265a420247d3af018e40_JaffaCakes118

General

Target

0cb7ac1df851265a420247d3af018e40_JaffaCakes118
Size

432KB
MD5

0cb7ac1df851265a420247d3af018e40
SHA1

0d6cb4458afc37adca513caac5049c9221a5025e
SHA256

1a4c5af0f52e327da0a1ad44dd949ab8bfd06924376ecec0b59db6dd003fdd53
SHA512

89e5a2f8ee462d468eaa29add87f6f92fb2cf4547c5a5748f896ee4202569e8cd15acc27c8e82bb0ce9b09a468d2ad258900c6f0c4453c367bf796c00d1c865f
SSDEEP

6144:qLEOlUimClA+x2gTIlngb389Qrk7/9joUlWBzkB0RizIzCQFrzbX56k0aFs7OXE:Zim07c6Eng7EQYb932zkPIznz7MiXE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0cb7ac1df851265a420247d3af018e40_JaffaCakes118

Files

0cb7ac1df851265a420247d3af018e40_JaffaCakes118
.exe windows:4 windows x86 arch:x86

752c5a10aceabc50e3a3ee27894f9d27

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenW
GetModuleHandleW
ExitProcess
GetCurrentDirectoryA
VirtualAlloc
IsDebuggerPresent
GetCommandLineA

setupapi

SetupGetLineByIndexW
SetupGetLineTextW
CM_Reenumerate_DevNode_Ex
SetupCloseLog
SetupDiInstallDevice
SetupDiGetDeviceRegistryPropertyW
SetupDiGetDeviceInterfaceDetailA
SetupDiOpenDevRegKey
SetupDiGetDriverInfoDetailW
SetupGetMultiSzFieldW
SetupDiGetDeviceInstallParamsW
pSetupStringFromGuid
SetupDiOpenClassRegKeyExW
SetupGetTargetPathW
SetupDiBuildDriverInfoList
SetupDiGetDeviceInterfaceAlias
SetupInstallFromInfSectionW
SetupInstallFilesFromInfSectionW

gdi32

GetGlyphOutlineW
StretchDIBits
GetTextExtentPoint32W
ExcludeClipRect
GetEnhMetaFileHeader
GetWindowOrgEx
ArcTo

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.textbs
Size: 18KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.orpc
Size: 122KB - Virtual size: 188KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 148KB - Virtual size: 206KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 132KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

752c5a10aceabc50e3a3ee27894f9d27

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

setupapi

gdi32

Sections

.text Size: 9KB - Virtual size: 9KB

.textbs Size: 18KB - Virtual size: 70KB

.orpc Size: 122KB - Virtual size: 188KB

.CRT Size: 148KB - Virtual size: 206KB

.rsrc Size: 132KB - Virtual size: 132KB

.text
Size: 9KB - Virtual size: 9KB

.textbs
Size: 18KB - Virtual size: 70KB

.orpc
Size: 122KB - Virtual size: 188KB

.CRT
Size: 148KB - Virtual size: 206KB

.rsrc
Size: 132KB - Virtual size: 132KB