3c043de8b06de1ad67159a07a635e88c_JaffaCakes118

General

Target

3c043de8b06de1ad67159a07a635e88c_JaffaCakes118
Size

108KB
MD5

3c043de8b06de1ad67159a07a635e88c
SHA1

b4b62d6daf6e5d0cd85d2f75310ca93264a84855
SHA256

e2b8b519409c851690d191f5a6c274eb8ebd63e21620b6a0a4b156b4a838e2c1
SHA512

6a7def34bc40b89e74210c5016967984129be152814317ad2b21b274de2e8154c64519d1b59fb6ecad608ce55308e3808131d8a493ad98e4826f24ca26a4cf5c
SSDEEP

1536:CED/DoY6pHWxA5gSdUW/UhqSG15tt3zBSH9UQSf/XfWEnBaI4fWWEchLNT:CgonHcAhxIW3zI9uRBaI4lhLNT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3c043de8b06de1ad67159a07a635e88c_JaffaCakes118

Files

3c043de8b06de1ad67159a07a635e88c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1c1e2ed841f760d0fa4594fdc3ab920a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
EnumResourceLanguagesA
ExitProcess
FreeEnvironmentStringsA
GetACP
GetCalendarInfoW
GetCommandLineA
GetModuleHandleA
GetStartupInfoA
GetVersionExA
GetVolumeNameForVolumeMountPointA
HeapAlloc
HeapCreate
IsBadStringPtrW
SetCalendarInfoA
SetEndOfFile
SetThreadExecutionState
TerminateJobObject
TryEnterCriticalSection
WaitForSingleObject
lstrcatA

user32

LoadStringA
GetWindowRect
GetScrollInfo
DestroyWindow
SetScrollInfo

comctl32

ImageList_GetImageRect
FlatSB_GetScrollProp
ImageList_DragLeave
ImageList_Read
FlatSB_GetScrollInfo

msi

MsiGetFileSignatureInformationW
MsiEvaluateConditionA
MsiDatabaseCommit
Migrate10CachedPackagesA
MsiConfigureProductExA
MsiConfigureProductA
MsiUseFeatureW

oleaut32

VarBstrCmp
SysStringLen
SysReAllocString
SafeArrayDestroy
SafeArrayAllocData
SafeArrayAccessData
RevokeActiveObject
RegisterTypeLi
OleTranslateColor
OleLoadPicturePath
ClearCustData

Sections

.text
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1c1e2ed841f760d0fa4594fdc3ab920a

Headers

File Characteristics

Imports

kernel32

user32

comctl32

msi

oleaut32

Sections

.text Size: 68KB - Virtual size: 67KB

.data Size: 28KB - Virtual size: 27KB

.rsrc Size: 4KB - Virtual size: 3KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 68KB - Virtual size: 67KB

.data
Size: 28KB - Virtual size: 27KB

.rsrc
Size: 4KB - Virtual size: 3KB

.reloc
Size: 4KB - Virtual size: 3KB