2ac46ddf24c46768ef1df94c15e67930_JaffaCakes118

General

Target

2ac46ddf24c46768ef1df94c15e67930_JaffaCakes118
Size

3.4MB
MD5

2ac46ddf24c46768ef1df94c15e67930
SHA1

ee46a45461e94acfc6004dc41a0e2a2562e247cd
SHA256

e9bc8da564445b2ef5b7f59d1b068ed5bfe30cb0d6ad40a81e60277f89bb9dd7
SHA512

639521cdcf124ad2ee67034d24ef32cf077d9e4e0a4f61d803c6a88f0bfdd41839a16056831320ee83458ac8bf1a316c54b8033f6aa54b2b53aaa1ceb9b47394
SSDEEP

49152:pFxzGofT40wAamnG+OZL3Oniw86taBt+Vik5Cf7PzbQ4FacItNgBio/2KZD5bKdf:ZzFr4samG5Onix8jCPzyThoJ97q

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2ac46ddf24c46768ef1df94c15e67930_JaffaCakes118

Files

2ac46ddf24c46768ef1df94c15e67930_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5aee20850a414e5cb1af752fc23d0980

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
GetCurrentThreadId
GetCurrentProcessId
SetUnhandledExceptionFilter
GetModuleHandleW
QueryPerformanceCounter
GetProcAddress
UnhandledExceptionFilter
Sleep
GetTickCount
WideCharToMultiByte
HeapAlloc
EnterCriticalSection
WaitForSingleObject
GetProcessHeap
CreateFileW
ExitProcess
GetModuleFileNameW
GetStartupInfoW
IsDebuggerPresent
FindClose
ReadFile
FormatMessageW
GetFileType
TlsGetValue
InitializeCriticalSection
GetConsoleMode
TlsAlloc
HeapSize
LoadLibraryExW
GetCPInfo
CompareStringW
LCMapStringW
GetModuleFileNameA
FindNextFileW
IsValidCodePage
DeleteFileW
VirtualAlloc
GetConsoleCP
LocalAlloc
GetCommandLineA
DecodePointer
SetEndOfFile
GetVersionExW
CreateFileA
VirtualFree
LoadLibraryA
GetModuleHandleExW
GetLocaleInfoW
CreateDirectoryW
GetExitCodeProcess

user32

DispatchMessageW
CreateWindowExW
SetWindowLongW
GetWindowLongW
GetSystemMetrics
GetDC
GetWindowRect
SendMessageW
GetClientRect
GetParent
EndDialog
SetWindowTextW
SetTimer
SetFocus
GetSysColor
PeekMessageW
RegisterClassW
EnableMenuItem
GetWindowTextW
UpdateWindow
GetKeyState
CharUpperW
ClientToScreen

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 612KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5aee20850a414e5cb1af752fc23d0980

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 6KB - Virtual size: 6KB

.data Size: - Virtual size: 612KB

.rdata Size: 3.4MB - Virtual size: 3.4MB

.idata Size: 2KB - Virtual size: 1KB

.text
Size: 6KB - Virtual size: 6KB

.data
Size: - Virtual size: 612KB

.rdata
Size: 3.4MB - Virtual size: 3.4MB

.idata
Size: 2KB - Virtual size: 1KB