f7f3953c72a4210a0f682fe58da645a1_JaffaCakes118

General

Target

f7f3953c72a4210a0f682fe58da645a1_JaffaCakes118
Size

388KB
MD5

f7f3953c72a4210a0f682fe58da645a1
SHA1

69c0ddd500d2fa1170d8aba5d60549a8b2f0e160
SHA256

490f13ec8ca92416669cace72012157f2226821d19220859663ac3b07d3b2e32
SHA512

bbf5ac57b21c687d703a2ac81b6c15553941e8fe4b9a095b4eb5e1b0cce8e9d51c082abc2f3613413dffa43c6a99023111100bd94384fb2d2e04dae3c5f6159c
SSDEEP

6144:qJrlgLEBB2hlvappE8Ba/gpV5Nchd5lFpyJ00p3UHNDF+s6qYEiA/xecF0Xa:EJHBmippf44pV5TJ73INDzAruD0K

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f7f3953c72a4210a0f682fe58da645a1_JaffaCakes118

Files

f7f3953c72a4210a0f682fe58da645a1_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ce613fd267382debf31d8a169f4fcdbd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LeaveCriticalSection
UnhandledExceptionFilter
WriteFile
FindResourceA
GetProcAddress
FreeEnvironmentStringsW
HeapReAlloc
TlsSetValue
WriteProfileStringW
InitializeCriticalSection
GetCurrentProcessId
HeapAlloc
FindNextFileA
GetFileType
IsBadWritePtr
GetModuleHandleA
GetCurrentDirectoryW
GetConsoleMode
WaitNamedPipeA
InterlockedExchange
GetStartupInfoA
TlsAlloc
EnterCriticalSection
SetLastError
GlobalGetAtomNameA
ReadConsoleOutputCharacterW
HeapCreate
GetStringTypeA
GetStringTypeW
ExitProcess
GetTickCount
SetEnvironmentVariableA
TlsFree
HeapFree
GetCommandLineW
GetModuleFileNameA
MultiByteToWideChar
LoadLibraryA
QueryPerformanceCounter
GetCommandLineA
VirtualAlloc
GetPrivateProfileSectionNamesW
DeleteCriticalSection
VirtualQuery
GetCurrentProcess
TerminateProcess
GetCurrentThreadId
RtlUnwind
GetCurrentThread
GetLastError
GetStdHandle
HeapDestroy
GetACP
VirtualFree
FreeEnvironmentStringsA
GetSystemTimeAsFileTime
GetEnvironmentStrings
CopyFileA
FreeLibrary
GetEnvironmentStringsW
GetModuleFileNameW
GetCPInfo
OpenSemaphoreW
GetVersion
SetHandleCount
TlsGetValue
GetStartupInfoW

comdlg32

ChooseColorA
FindTextA

Sections

.text
Size: 115KB - Virtual size: 114KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 265KB - Virtual size: 278KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ce613fd267382debf31d8a169f4fcdbd

Headers

File Characteristics

Imports

kernel32

comdlg32

Sections

.text Size: 115KB - Virtual size: 114KB

.data Size: 265KB - Virtual size: 278KB

.rsrc Size: 6KB - Virtual size: 6KB

.text
Size: 115KB - Virtual size: 114KB

.data
Size: 265KB - Virtual size: 278KB

.rsrc
Size: 6KB - Virtual size: 6KB