569c837947251b8e27aa58c34109b25f_JaffaCakes118

General

Target

569c837947251b8e27aa58c34109b25f_JaffaCakes118
Size

167KB
MD5

569c837947251b8e27aa58c34109b25f
SHA1

a396830c42d9270ba804f12fabc276a0546b7059
SHA256

e850ba1498470ecfc4ee6dfda54b19980d77c2b094afbf1b2b74bd13c969fbd2
SHA512

6d3176edb6e335be81b30f18759dbb9e1e8925259a0f2d3ba1245262d76b724ed1657602edf5e9b8decd39295fb37f9485b70d5b38cb6540d3f369120c4ded4a
SSDEEP

3072:xlMD6Fxmkobg6gR8TBgqCacNN4M8iKmG5tVUF3QR3Lz32AYpQ8PmMwS9PmbZzslx:xfugWTga+vrGPV53HrKlt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
569c837947251b8e27aa58c34109b25f_JaffaCakes118

Files

569c837947251b8e27aa58c34109b25f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ec1d34ae77b1cfaa801d9c2e3c6863f0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

GetHGlobalFromStream
StgCreateDocfileOnILockBytes
CoGetMalloc
CoRegisterClassObject
ReleaseStgMedium
CoUninitialize
CoCreateInstanceEx

kernel32

GetModuleHandleA
LoadLibraryA
LoadResource
RaiseException
HeapFree
GetACP
GetCommandLineA
FreeLibrary
lstrlenA
GetModuleHandleW
LoadLibraryExA
VirtualAllocEx
GetCommandLineW
ExitProcess
lstrlenW
GetProcAddress

comctl32

ImageList_DrawEx
ImageList_Remove
ImageList_Read
ImageList_Write
ImageList_Draw
ImageList_Destroy
ImageList_Create

gdi32

GetCurrentPositionEx
GetDIBColorTable
SetBkColor
GetDIBits
GetPaletteEntries
GetRgnBox
GetBitmapBits

shell32

SHGetSpecialFolderLocation
Shell_NotifyIconA
SHGetDesktopFolder

oleaut32

SysFreeString
GetErrorInfo
OleLoadPicture
SafeArrayPtrOfIndex
VariantChangeType
RegisterTypeLib
SysReAllocStringLen
SafeArrayGetUBound
SafeArrayCreate
SafeArrayGetElement

Sections

.text
Size: 77KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 579B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 67KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ec1d34ae77b1cfaa801d9c2e3c6863f0

Headers

File Characteristics

Imports

ole32

kernel32

comctl32

gdi32

shell32

oleaut32

Sections

.text Size: 77KB - Virtual size: 76KB

.data Size: 1024B - Virtual size: 579B

.rdata Size: 11KB - Virtual size: 10KB

.bss Size: 67KB - Virtual size: 66KB

.rsrc Size: 9KB - Virtual size: 9KB

.text
Size: 77KB - Virtual size: 76KB

.data
Size: 1024B - Virtual size: 579B

.rdata
Size: 11KB - Virtual size: 10KB

.bss
Size: 67KB - Virtual size: 66KB

.rsrc
Size: 9KB - Virtual size: 9KB