JaffaCakes118_cb36a1d799acc290f4152471f539c5dc443dac0ba6d46c402ed86a1b5257db0c

General

Target

JaffaCakes118_cb36a1d799acc290f4152471f539c5dc443dac0ba6d46c402ed86a1b5257db0c
Size

364KB
MD5

04f3e8e5dc4cd624e5812bc7a1d7ebe2
SHA1

0271ab6ef296a4c0a3bc030dd83e88f22976e3d7
SHA256

cb36a1d799acc290f4152471f539c5dc443dac0ba6d46c402ed86a1b5257db0c
SHA512

e0ce76bbfe1a59929a4836f12eb5d9e491bb0076185d46fd6accf655a2432fcad2274b3c2c83907d75ec90b6a98435c83366669912c094d3d6d664c0d7d66c84
SSDEEP

6144:hzCBFQ0J9tceEFDAAVNWifPs9ZDtuFTSSzp3UnRMInT7kw363xgW0rQN8:hEFQ0Tue6UAVkz9htuFFRKWITIrR0rQa

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/core/paper_x32.dat

JaffaCakes118_cb36a1d799acc290f4152471f539c5dc443dac0ba6d46c402ed86a1b5257db0c
.zip
core/cmd.bat
core/license.dat
core/paper_x32.dat
.dll windows:6 windows x64 arch:x64

9e7c6a393b12eb84289e5a86adca17af

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

imm32

ImmGetProperty
ImmAssociateContextEx
ImmSetConversionStatus
ImmGetOpenStatus
ImmGetCompositionFontA
ImmSetCompositionFontW
ImmConfigureIMEA
ImmGetConversionListA
ImmEnumInputContext

shlwapi

ord153
StrRetToStrA
StrFormatByteSizeA
StrFormatByteSizeEx
StrCSpnIA
StrFormatKBSizeA

msvfw32

GetOpenFileNamePreviewA
MCIWndCreateW
DrawDibProfileDisplay
ICCompress
DrawDibDraw
DrawDibBegin
ICSeqCompressFrameStart
ICImageDecompress

Exports

Exports

BxCOLgxzna
DllMain
OdalgbEP
czYVQMm
iHNAxsIgD
zvwqWYlKp

Sections

.text
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE