f1bb8174e3133781d1d1ad8edce1f332_JaffaCakes118

General

Target

f1bb8174e3133781d1d1ad8edce1f332_JaffaCakes118
Size

66KB
MD5

f1bb8174e3133781d1d1ad8edce1f332
SHA1

e099d77b17eb6a07a6cacf34d4a267fa74b1e8b9
SHA256

d979c2f805ce2e01d21e49aad39e3ff0f2aa7e98c86b0e5671a7c4868bfa5640
SHA512

8d1eda07eb236b6d5a8a470bf4f007d6e7a1e990374bde7f3915a70cd988a9ce18cec216bbe66265d6293fdb1d4a8d4c679b9d1905704c88eaf57d76de6dfd1e
SSDEEP

1536:UzeLpZSwN8fNY+lvqf8Pn/Ty5zvaRguMqs50zJfWvU+FwKBGj/s0D:3pZSw+G+lCf8v/TASRgFF5iWvU+FOTD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f1bb8174e3133781d1d1ad8edce1f332_JaffaCakes118

Files

f1bb8174e3133781d1d1ad8edce1f332_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9fb43a2cbc095df8bb91c93478d7dee1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InterlockedExchange
DisableThreadLibraryCalls
LoadLibraryA
LoadLibraryA
InterlockedDecrement
GetTickCount
GetCurrentProcessId
GetVersionExA
UnhandledExceptionFilter
Sleep
GetProcAddress
UnhandledExceptionFilter
CreateFileW
HeapFree
HeapDestroy
GetProcessHeap
InterlockedIncrement
Sleep
GetTickCount
GetModuleHandleA
CreateThread
CreateEventW
GetCurrentProcess
LocalFree
HeapAlloc
CreateThread
HeapAlloc
FreeLibrary
HeapFree
ReadFile
DisableThreadLibraryCalls
LeaveCriticalSection
GetModuleFileNameA
EnterCriticalSection
lstrlenA
CreateThread
HeapAlloc

user32

ReleaseDC
SendMessageW
GetClientRect
IsDlgButtonChecked
wsprintfA
GetClientRect
SetWindowPos
PeekMessageW
SetTimer
GetDC
SendDlgItemMessageW
PostQuitMessage
GetClientRect
EnableWindow
SetDlgItemTextW
DispatchMessageW
SetTimer
DestroyWindow
InvalidateRect
GetWindowLongW
SetWindowPos
BeginPaint
TranslateMessage
SetForegroundWindow
EnableWindow
GetSystemMetrics
PeekMessageW
LoadStringW
SetForegroundWindow
DefWindowProcW
EnableWindow
SetTimer
IsWindow
ReleaseDC
BeginPaint
DispatchMessageW
BeginPaint
SetWindowTextW

Sections

.text
Size: 61KB - Virtual size: 104KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9fb43a2cbc095df8bb91c93478d7dee1

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 61KB - Virtual size: 104KB

.rdata Size: 2KB - Virtual size: 4KB

.rsrc Size: 1024B - Virtual size: 4KB

.data Size: 512B - Virtual size: 4KB

.text
Size: 61KB - Virtual size: 104KB

.rdata
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 1024B - Virtual size: 4KB

.data
Size: 512B - Virtual size: 4KB