1072b3590d31fdc7ea2cc2c2a712dd27_JaffaCakes118

General

Target

1072b3590d31fdc7ea2cc2c2a712dd27_JaffaCakes118
Size

177KB
MD5

1072b3590d31fdc7ea2cc2c2a712dd27
SHA1

88b8b326244681ffb028f1234cb475d747121c3e
SHA256

e3be23ac32bf8e1b1ddceee24b028879304e9085e05f2d46721091c515aa926a
SHA512

76446aa022318d4c88dfecb92900af85f9b50109171342b7be0c07cbb338a7826d606fa3317557d453d70856ec14c2464dbf29f2598085739ce6375a419dab8c
SSDEEP

3072:WnuZ4RGu2BDhT8cai10oaFkXSLWHCMX/6OpyNeTCtj3HxB/9s0ejGP:ERMfEiW76d6KyN+Ct9B9ve

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1072b3590d31fdc7ea2cc2c2a712dd27_JaffaCakes118

Files

1072b3590d31fdc7ea2cc2c2a712dd27_JaffaCakes118
.dll windows:4 windows x86 arch:x86

a55a76089c7cf94f505dfeb90b09adf9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

IsWindowEnabled
SetCursor
GetMenu
SetClassLongA
SetCapture
SetClipboardData
GetCapture
GetDesktopWindow
CharLowerA
SetFocus

ole32

CoRevokeClassObject
GetHGlobalFromStream
CoUnmarshalInterface

gdi32

SetBkMode

kernel32

GetStringTypeW
SetLastError
ReadFile
GetCurrentProcess
GetFileAttributesA
GlobalAlloc
GetStringTypeA
lstrlenA
GetFileType
LockResource
GetCurrentThreadId
GetCommandLineA
VirtualAlloc
GetLastError
ExitProcess
IsBadHugeReadPtr
IsBadReadPtr
GetStdHandle
GetProcessHeap
lstrcmpiA
GetModuleHandleW
CloseHandle
VirtualQuery
GetModuleHandleA

comctl32

ImageList_Destroy
ImageList_Read
ImageList_Create
ImageList_Remove
ImageList_Draw
ImageList_GetBkColor
ImageList_Add
ImageList_DrawEx

Exports

Exports

_26dObjFj
__GOw53@16
_9fbAuDwAP

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 174KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 158KB - Virtual size: 158KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a55a76089c7cf94f505dfeb90b09adf9

Headers

File Characteristics

Imports

user32

ole32

gdi32

kernel32

comctl32

Exports

Exports

Sections

.text Size: 11KB - Virtual size: 11KB

.rdata Size: 3KB - Virtual size: 174KB

.data Size: 158KB - Virtual size: 158KB

.rsrc Size: 1024B - Virtual size: 1000B

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 11KB - Virtual size: 11KB

.rdata
Size: 3KB - Virtual size: 174KB

.data
Size: 158KB - Virtual size: 158KB

.rsrc
Size: 1024B - Virtual size: 1000B

.reloc
Size: 2KB - Virtual size: 2KB