1235e7a0ec8c65aad37cf3a32aeffab5_JaffaCakes118

General

Target

1235e7a0ec8c65aad37cf3a32aeffab5_JaffaCakes118
Size

216KB
MD5

1235e7a0ec8c65aad37cf3a32aeffab5
SHA1

67af5957e23f0ff59fcce2c64ada95c7b205a083
SHA256

43677059f6a264f0c9f9fe14ece428514f20e0b17d47fb96018756740bfb7fba
SHA512

0791b2e2c50adc851ce74e8d78b7e03801e0c3df03cd5215224e7e8ee0bfc1269c3056133f88a463227f53ec30aa4e1496232b77079d7d683ca06a4520e6d610
SSDEEP

3072:g1mrjCj5IfTIidwxRmGh7URaQkr3TJby2Ryg4rPI:gkPISqzmLRaQkv5BaP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1235e7a0ec8c65aad37cf3a32aeffab5_JaffaCakes118

Files

1235e7a0ec8c65aad37cf3a32aeffab5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

189b4d8032ddf8c80b37d6036ee3cab4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareStringW
EnumCalendarInfoA
GetDateFormatA
GetFileSize
GetModuleHandleW
GetSystemInfo
GetTempFileNameA
GetTickCount
GetVersion
GlobalDeleteAtom
GlobalReAlloc
IsBadWritePtr
LoadLibraryExW
VirtualAlloc
WritePrivateProfileStringA
lstrlenA

user32

CreateWindowExA
DefWindowProcA
EnableWindow
GetActiveWindow
GetWindowRect
InvalidateRect
IsWindowVisible
SetWindowPos

gdi32

CombineRgn
CreateCompatibleDC
GetBrushOrgEx
GetDeviceCaps
GetStockObject
IntersectClipRect
PatBlt
SelectPalette

shell32

DragQueryFileA
ExtractIconA
SHAppBarMessage
SHCreateDirectoryExA
SHFileOperationW
SHGetFileInfo
SHGetFolderLocation
SHGetSpecialFolderLocation
ShellExecuteA

comctl32

CreateToolbarEx
ImageList_LoadImageW
InitCommonControls

Sections

.text
Size: 61KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 55KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ardata
Size: 76KB - Virtual size: 136KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

189b4d8032ddf8c80b37d6036ee3cab4

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

comctl32

Sections

.text Size: 61KB - Virtual size: 60KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 55KB - Virtual size: 55KB

.rsrc Size: 21KB - Virtual size: 140KB

.ardata Size: 76KB - Virtual size: 136KB

.text
Size: 61KB - Virtual size: 60KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 55KB - Virtual size: 55KB

.rsrc
Size: 21KB - Virtual size: 140KB

.ardata
Size: 76KB - Virtual size: 136KB