f2d9da34faed6db1c1e19f69db82d724_JaffaCakes118

General

Target

f2d9da34faed6db1c1e19f69db82d724_JaffaCakes118
Size

2.3MB
MD5

f2d9da34faed6db1c1e19f69db82d724
SHA1

c3e7efd785e163651c5b4e91865681c941300b81
SHA256

c01e4f01bee28e8f7b0e5adf9e64980d243c0bcd374f35f290f173e5ea83a8fa
SHA512

06fe91083d60fa58c893429e1a41190fcbf04ef93caf6ecafb2698f01c716a48941d961f86c8c811c577d12c1f2e8493bde60aa0b67f9d7b5eacf950f59ba6f5
SSDEEP

49152:Wh546gtz8255dZAq8mA2EJIQTV1qXBX7DBqHlJeXze05p39:WonA25dA/KEqoV1nXeX9B9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f2d9da34faed6db1c1e19f69db82d724_JaffaCakes118

Files

f2d9da34faed6db1c1e19f69db82d724_JaffaCakes118
.exe windows:4 windows x86 arch:x86

20f6b28d79a5fad5d5c4d9104ea3daa8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CreateStreamOnHGlobal

user32

SetFocus
DialogBoxParamA
GetDC
EndDialog
MessageBoxA
LoadIconA
SendMessageA
GetSysColor
SendDlgItemMessageA
SetDlgItemTextA
GetDlgItem

comctl32

ord17

olepro32

ord251

shell32

ShellExecuteA

kernel32

SetStdHandle
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetProcAddress
FlushFileBuffers
SetEnvironmentVariableA
GetOEMCP
GetACP
CompareStringW
CompareStringA
GetCPInfo
MultiByteToWideChar
SetFilePointer
GetModuleHandleA
HeapReAlloc
VirtualAlloc
RtlUnwind
VirtualFree
HeapCreate
CloseHandle
WriteFile
SizeofResource
CreateFileA
GetWindowsDirectoryA
LockResource
LoadResource
FindResourceA
LoadLibraryA
GlobalFree
GlobalLock
GlobalAlloc
GetLastError
FreeResource
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
HeapFree
HeapAlloc
WideCharToMultiByte
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3.2MB - Virtual size: 3.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

20f6b28d79a5fad5d5c4d9104ea3daa8

Headers

File Characteristics

Imports

ole32

user32

comctl32

olepro32

shell32

kernel32

Sections

.text Size: 20KB - Virtual size: 19KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 8KB

.rsrc Size: 3.2MB - Virtual size: 3.2MB

.text
Size: 20KB - Virtual size: 19KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 8KB

.rsrc
Size: 3.2MB - Virtual size: 3.2MB