f661db54f670a0d3cba8fc3c5fd37cad_JaffaCakes118

General

Target

f661db54f670a0d3cba8fc3c5fd37cad_JaffaCakes118
Size

191KB
MD5

f661db54f670a0d3cba8fc3c5fd37cad
SHA1

f3da018ee06b903b1e68a6c5aad93686fdcfd17b
SHA256

f6a8c08a4c28de5e906f052199e4391f111356f00bb230bebf87c03494f735bd
SHA512

f8b0644bff7db28a68d8d81521ef986b73225294f07aa03eae605460208d0d8a3aea7aaf61ba139ec80a5542b095b2857b46ed253dc4fada72e80a582c187bfa
SSDEEP

3072:YSQ0TjdzACUj9ZV7IDGhChFUjwsDM62ImJdbd3e/2wIBQ2vzU/X+Lx:bfxdUJ8ChSFLsz27Jdbdf3EX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f661db54f670a0d3cba8fc3c5fd37cad_JaffaCakes118

Files

f661db54f670a0d3cba8fc3c5fd37cad_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2066dcf9a789ffcfd849afaf375db00b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

comctl32

ImageList_Create
ImageList_Add
ImageList_GetIconSize
ImageList_DrawEx
ImageList_Destroy

shlwapi

PathIsRelativeW
PathIsRootW
PathCanonicalizeW
PathStripToRootW
PathIsURLW
PathCombineW

comdlg32

GetFileTitleA

user32

ClipCursor
MonitorFromWindow
EmptyClipboard
DestroyIcon
SetScrollRange
DrawEdge
CallNextHookEx
RegisterClassW
SetClipboardData
WinHelpW
SetWindowsHookExW
DestroyCursor
ChildWindowFromPoint
SetWindowPos
IsClipboardFormatAvailable
GetSysColorBrush
UnhookWindowsHookEx
DefWindowProcW
ToAscii
GetSysColor

kernel32

GetVolumeInformationW
GetVersionExW
CreateFiber
FileTimeToSystemTime
UnlockFile
WriteFileGather
CompareStringW
VerLanguageNameW
SetEndOfFile
GetSystemTime
FlushFileBuffers
GetUserDefaultLangID
GetFileType
EnumResourceNamesW
FlushFileBuffers
GetFileTime
LockFile
IsDBCSLeadByte
GetProfileStringW
FileTimeToLocalFileTime
LocalAlloc
SearchPathW
GetFileAttributesA
FindResourceExA
GetSystemDirectoryW

rpcrt4

NdrClientCall
RpcBindingSetAuthInfoA
RpcStringBindingComposeA
RpcBindingFromStringBindingA
RpcStringFreeA

Sections

.text
Size: 168KB - Virtual size: 168KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lib
Size: 512B - Virtual size: 220KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2066dcf9a789ffcfd849afaf375db00b

Headers

File Characteristics

Imports

comctl32

shlwapi

comdlg32

user32

kernel32

rpcrt4

Sections

.text Size: 168KB - Virtual size: 168KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 19KB - Virtual size: 19KB

.lib Size: 512B - Virtual size: 220KB

.text
Size: 168KB - Virtual size: 168KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 19KB - Virtual size: 19KB

.lib
Size: 512B - Virtual size: 220KB