f2ee02bfbf9d7f7d4719c642efafc269_JaffaCakes118

General

Target

f2ee02bfbf9d7f7d4719c642efafc269_JaffaCakes118
Size

97KB
MD5

f2ee02bfbf9d7f7d4719c642efafc269
SHA1

28261f7307d6c8c10cd4f98b8042416053eedbe4
SHA256

6bb6345eacb05ec717df83c3aea6f07ddef45212b4964ffc6007db066c846462
SHA512

4763ca5f32d8f5b54263bc53c2558596cea0d721cbc6af91335dffbd5c27939f264b96f582c94297190d673a3d8dec8f7cf2f6edf183c132635de71f2733f2c5
SSDEEP

1536:rCvLoFUxdWUVPrqWoUCG851Anh9p5NmB5UqkTEDW2wPQyv:rIbxBrXoUCvATzNWnkTEa2wtv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f2ee02bfbf9d7f7d4719c642efafc269_JaffaCakes118

Files

f2ee02bfbf9d7f7d4719c642efafc269_JaffaCakes118
.exe windows:4 windows x86 arch:x86

84df34243e8e8206d4e7540a5685c622

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_adjust_fdiv
_initterm
putchar
__setusermatherr
__getmainargs
setlocale
fopen
_exit
log
fwrite
strlen
_XcptFilter
ceil
strspn
_mktemp
atof
_acmdln
__set_app_type
strtoul
_except_handler3
_flsbuf
__p__commode
wcstombs
_fullpath
sqrt
_itow
sin
__p__fmode
_vsnprintf
exit

kernel32

RaiseException
lstrcpynA
TerminateProcess
CreateDirectoryA
GetModuleFileNameW
DeviceIoControl
SetHandleCount
VirtualProtect
WaitForSingleObject
WriteConsoleA
GlobalReAlloc
CompareStringA
GetDriveTypeA
GetStartupInfoA
GetOEMCP
GetModuleHandleA

user32

GetScrollInfo
AdjustWindowRectEx
SetTimer
SetPropA
ShowOwnedPopups
GetSysColorBrush
IsWindowVisible
UnregisterClassA
IsIconic
OpenClipboard

oleaut32

SysAllocStringLen
SafeArrayRedim
SafeArrayGetElement
VariantClear
SafeArrayCreate
SysStringLen
GetErrorInfo
SafeArrayPtrOfIndex
SysStringByteLen

advapi32

RegOpenKeyW
RegFlushKey
AllocateAndInitializeSid
RegEnumKeyA
OpenSCManagerW
RegQueryValueExA
AdjustTokenPrivileges
RegCreateKeyA
CopySid
RegCreateKeyExW
GetUserNameA
RegQueryInfoKeyA
CloseServiceHandle
OpenServiceW
RegDeleteValueW
OpenThreadToken

Sections

.text
Size: 57KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

84df34243e8e8206d4e7540a5685c622

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

oleaut32

advapi32

Sections

.text Size: 57KB - Virtual size: 56KB

.data Size: 17KB - Virtual size: 16KB

.rsrc Size: 22KB - Virtual size: 21KB

.text
Size: 57KB - Virtual size: 56KB

.data
Size: 17KB - Virtual size: 16KB

.rsrc
Size: 22KB - Virtual size: 21KB