c8509dbdf5cc70ffdc451efbe6f1328c_JaffaCakes118

General

Target

c8509dbdf5cc70ffdc451efbe6f1328c_JaffaCakes118
Size

193KB
MD5

c8509dbdf5cc70ffdc451efbe6f1328c
SHA1

8da22f9403e5fa6c1db34d60785b6850259f1958
SHA256

c9e8a9c1d15153168c3e22f04cae35cb2f57bc3a1c7b28416f68f146a6997c46
SHA512

4c11358d749a1289d59dc13b401e0310fc1d724309ce20fcf26b68648a851fe3a4d8010da16e9173297ab8e5e0c2bb4457e16a7c10db3c1310dfb3b50ceb6d16
SSDEEP

6144:kQGlhY0BAc0AIO24Dg2z22jJRK1PWJZ8GQ:9EhYU0ANDg2z22jJRuSmGQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c8509dbdf5cc70ffdc451efbe6f1328c_JaffaCakes118

Files

c8509dbdf5cc70ffdc451efbe6f1328c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0edfcf0c353c2a586c5fbb36429bf611

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

SetClipboardData
DrawEdge
DefWindowProcW
MonitorFromWindow
UnhookWindowsHookEx
WinHelpW
EmptyClipboard
DestroyCursor
SetWindowPos
DestroyIcon
ClipCursor
CallNextHookEx
ToAscii
ChildWindowFromPoint
RegisterClassW
IsClipboardFormatAvailable
SetScrollRange
GetSysColorBrush
SetWindowsHookExW
GetSysColor

shlwapi

PathCanonicalizeW
PathStripToRootW
PathIsRelativeW
PathIsURLW
PathIsRootW
PathCombineW

comdlg32

GetFileTitleA

rpcrt4

RpcBindingSetAuthInfoA
NdrClientCall
RpcStringBindingComposeA
RpcBindingFromStringBindingA
RpcStringFreeA

kernel32

GetFileType
LockFile
FlushFileBuffers
CreateFiber
SearchPathW
WriteFileGather
GetSystemTime
LocalAlloc
FileTimeToSystemTime
GetFileTime
FindResourceExA
SetEndOfFile
EnumResourceNamesW
GetVersionExW
GetProfileStringW
FlushFileBuffers
VerLanguageNameW
CompareStringW
UnlockFile
GetUserDefaultLangID
FileTimeToLocalFileTime
GetFileAttributesA
GetVolumeInformationW
IsDBCSLeadByte
GetSystemDirectoryW

comctl32

ImageList_DrawEx
ImageList_Add
ImageList_Create
ImageList_GetIconSize
ImageList_Destroy

Sections

.text
Size: 163KB - Virtual size: 163KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lib
Size: 512B - Virtual size: 356KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0edfcf0c353c2a586c5fbb36429bf611

Headers

File Characteristics

Imports

user32

shlwapi

comdlg32

rpcrt4

kernel32

comctl32

Sections

.text Size: 163KB - Virtual size: 163KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 26KB - Virtual size: 25KB

.lib Size: 512B - Virtual size: 356KB

.text
Size: 163KB - Virtual size: 163KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 26KB - Virtual size: 25KB

.lib
Size: 512B - Virtual size: 356KB