f3b5fb2f0e3c531c11e47a5c62b072e3_JaffaCakes118

General

Target

f3b5fb2f0e3c531c11e47a5c62b072e3_JaffaCakes118
Size

575KB
MD5

f3b5fb2f0e3c531c11e47a5c62b072e3
SHA1

c7eb0037cd7e79d07fb44370f61c1a9429e3648e
SHA256

50e24e0685752f0b1a012e044010316a99632bd312a47b1bc3b7b5573fd894bb
SHA512

05dd5d5fb8406b565175cbbaf98f38af6b2c5c65e8027f66e4f0410187e71580248376e64fea76831724768325084e7cbe7158caadbfc14300c76c2a5f8ddea8
SSDEEP

12288:yw3wqwq/4YFeY+sZgK+KNy718FdqVyGNMn:y7qw+DBZg9NCFdqI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f3b5fb2f0e3c531c11e47a5c62b072e3_JaffaCakes118

Files

f3b5fb2f0e3c531c11e47a5c62b072e3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1071ad45564fe8f99ef9df95a1559785

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameA
GetEnvironmentVariableA
GetEnvironmentStrings
GetTimeZoneInformation
GetSystemTime
GetLocalTime
RtlUnwind
HeapFree
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
HeapAlloc
HeapReAlloc
HeapSize
GetLastError
CloseHandle
WriteFile
ReadFile
SetFilePointer
SetHandleCount
GetFileType
GetStdHandle
HeapCreate
FlushFileBuffers
UnhandledExceptionFilter
lstrlenA
FreeEnvironmentStringsA
MultiByteToWideChar
FreeEnvironmentStringsW
GetEnvironmentStringsW
WideCharToMultiByte
GetCPInfo
GetACP
GetOEMCP
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
GetProcAddress
CreateFileA
SetStdHandle
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadWritePtr
IsBadCodePtr
LoadLibraryA
CompareStringA
CompareStringW
SetEnvironmentVariableA
SetEndOfFile
GetFileAttributesA

Sections

.text
Size: 318KB - Virtual size: 318KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 46KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

1071ad45564fe8f99ef9df95a1559785

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 318KB - Virtual size: 318KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 46KB - Virtual size: 65KB

.idata Size: 1KB - Virtual size: 1KB

.reloc Size: 24KB - Virtual size: 24KB

.text
Size: 318KB - Virtual size: 318KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 46KB - Virtual size: 65KB

.idata
Size: 1KB - Virtual size: 1KB

.reloc
Size: 24KB - Virtual size: 24KB