faca9eb1f58b2d3767a71f46e86c4ddd_JaffaCakes118

General

Target

faca9eb1f58b2d3767a71f46e86c4ddd_JaffaCakes118
Size

414KB
MD5

faca9eb1f58b2d3767a71f46e86c4ddd
SHA1

82b00943e76d82a7c5b4adb2d27f37b16b3f2fe1
SHA256

7f6bd78dcbf19037be47e07bf46695226dff855c29fc91954c3a0a23d810876b
SHA512

912269b549478ebd13beff1ce76fc857ce7121c5b78afd6681c1c0272051a2e7bb4e3f3ef93d535280fcf9726ed2f8a0cd56e579d24d711d7ea270ae9b30a26a
SSDEEP

6144:CSvVgWbLuITJXKnwh7myqy36L5l5LVWORO+3/CClNa6KwVrT3c89PU:CSNgWbNMnwUy3Q35LVWkO+Kea6Jd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
faca9eb1f58b2d3767a71f46e86c4ddd_JaffaCakes118

Files

faca9eb1f58b2d3767a71f46e86c4ddd_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2ee463c50a4095674db71d5e640c992f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CallMsgFilterA
IsCharAlphaNumericW

comdlg32

ChooseColorA
FindTextW

kernel32

GetTimeFormatA
VirtualFree
QueryPerformanceCounter
HeapDestroy
TerminateProcess
GetStringTypeW
Sleep
TlsAlloc
GetFileType
GetModuleHandleW
VirtualQuery
RtlUnwind
GetCurrentThreadId
EnumSystemLocalesA
GetStdHandle
TlsGetValue
SetConsoleCtrlHandler
GetModuleFileNameA
GetLocaleInfoW
GetLocaleInfoA
DeleteCriticalSection
GetOEMCP
HeapFree
HeapReAlloc
SetEnvironmentVariableA
GetCurrentProcess
GetStringTypeA
GetEnvironmentStringsW
IsDebuggerPresent
GetCommandLineW
GetLastError
TlsFree
FreeLibrary
InterlockedDecrement
CompareStringW
LeaveCriticalSection
GetDateFormatA
GetTimeZoneInformation
GetModuleHandleA
LCMapStringA
GetCurrentThread
InterlockedExchange
SetHandleCount
GetUserDefaultLCID
GetStartupInfoA
FreeEnvironmentStringsW
ExitProcess
CompareStringA
TlsSetValue
GetACP
IsValidLocale
LoadLibraryA
VirtualAlloc
MultiByteToWideChar
InitializeCriticalSectionAndSpinCount
InterlockedIncrement
GetCurrentProcessId
GetTickCount
GetStartupInfoW
GetModuleFileNameW
GetCPInfo
EnterCriticalSection
HeapSize
IsValidCodePage
LCMapStringW
SetLastError
WideCharToMultiByte
WriteFile
GetSystemTimeAsFileTime
HeapAlloc
GetProcAddress
SetUnhandledExceptionFilter
HeapCreate
UnhandledExceptionFilter

Sections

.text
Size: 123KB - Virtual size: 122KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 279KB - Virtual size: 278KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2ee463c50a4095674db71d5e640c992f

Headers

File Characteristics

Imports

user32

comdlg32

kernel32

Sections

.text Size: 123KB - Virtual size: 122KB

.rdata Size: 8KB - Virtual size: 34KB

.data Size: 279KB - Virtual size: 278KB

.rsrc Size: 3KB - Virtual size: 3KB

.text
Size: 123KB - Virtual size: 122KB

.rdata
Size: 8KB - Virtual size: 34KB

.data
Size: 279KB - Virtual size: 278KB

.rsrc
Size: 3KB - Virtual size: 3KB