f05edabf8c34debff0125c1b276b068a_JaffaCakes118

General

Target

f05edabf8c34debff0125c1b276b068a_JaffaCakes118
Size

3.4MB
MD5

f05edabf8c34debff0125c1b276b068a
SHA1

a0b86690f9e3d4eb8e52b61d72c812a12f470106
SHA256

a98caf913169266ca3c29246bec51064490d382a63e1348eff067f435f50b6eb
SHA512

9bd56691805dd01d3831069ddc5516ab6a10b6b172f92534a4f8dff8dc9466713e18a7c5bb82c5a309a3e1c5226da21e0059cb5c0fcc338d0fb1024d28f3810a
SSDEEP

98304:BPXWNgr6rTCAmkt2j5M8PL8HND0H2Fw+Yr5q5UA:BPXWDBtUzm11zYr5q5UA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f05edabf8c34debff0125c1b276b068a_JaffaCakes118

Files

f05edabf8c34debff0125c1b276b068a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ea5a98953f1802a81cab0a4fbd51280e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
GetCurrentProcess
GetCurrentProcessId
SetUnhandledExceptionFilter
GetModuleHandleW
Sleep
SetLastError
HeapFree
HeapAlloc
LeaveCriticalSection
EnterCriticalSection
WriteFile
CreateFileW
GetModuleFileNameW
GetStartupInfoW
IsDebuggerPresent
GetCommandLineW
FindClose
ReadFile
GetACP
FormatMessageW
TlsGetValue
GetConsoleMode
TlsAlloc
HeapSetInformation
HeapSize
LoadLibraryW
LoadLibraryExW
GetCPInfo
SetFilePointer
GetFileAttributesW
GetStringTypeW
LCMapStringW
GetOEMCP
FreeEnvironmentStringsW
IsProcessorFeaturePresent
FindNextFileW
DeleteFileW
LocalAlloc
DecodePointer
GetVersionExW
LoadLibraryA
GetModuleHandleExW
ExpandEnvironmentStringsW

user32

ReleaseDC
MessageBoxW
PostQuitMessage
CreateWindowExW
SetWindowLongW
GetDlgItem
GetDC
SendMessageW
GetClientRect
SetWindowPos
IsWindow
GetParent
EndDialog
SetTimer
GetSysColor
InvalidateRect
GetWindow
UpdateWindow
MessageBoxA
CharUpperW

Sections

.rdata
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 612KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ea5a98953f1802a81cab0a4fbd51280e

Headers

File Characteristics

Imports

kernel32

user32

Sections

.rdata Size: 3.4MB - Virtual size: 3.4MB

.idata Size: 2KB - Virtual size: 1KB

.data Size: - Virtual size: 612KB

.text Size: 6KB - Virtual size: 6KB

.rdata
Size: 3.4MB - Virtual size: 3.4MB

.idata
Size: 2KB - Virtual size: 1KB

.data
Size: - Virtual size: 612KB

.text
Size: 6KB - Virtual size: 6KB