8160204e00a5e25ad71f8dbbcf0d00dc_JaffaCakes118

General

Target

8160204e00a5e25ad71f8dbbcf0d00dc_JaffaCakes118
Size

861KB
MD5

8160204e00a5e25ad71f8dbbcf0d00dc
SHA1

a0a41c62bc743c89019292324f00cbcc541e4473
SHA256

13cc6a38d1e4417aabb09247a9ff294b29df38c32de419efb90d179557a0f047
SHA512

f03324d67c6d7e906113d943001cad72ae6dedd1a8dff55daa0fda5833868e0987d09db05d52c289c0e755ebadf836b5052c79fe5b9d0cf909e74ed6f3cf7453
SSDEEP

24576:G1gWG9bwiy1Rw5T2j08bR2f75LIeNBWtj0ON:sG9bwK54a75LIki9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8160204e00a5e25ad71f8dbbcf0d00dc_JaffaCakes118

Files

8160204e00a5e25ad71f8dbbcf0d00dc_JaffaCakes118
.exe windows:5 windows x86 arch:x86

3fd33252d11bb05878072641343091ff

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__wgetmainargs
_wcmdln
exit
_XcptFilter
_exit

kernel32

WriteFile
GetStartupInfoW
GetStringTypeW
GetLocaleInfoW
WideCharToMultiByte
MultiByteToWideChar
IsValidCodePage
CreateDirectoryW
FindResourceExW
GetModuleHandleW
LoadLibraryExW
CreateEventW
TlsAlloc
SystemTimeToFileTime
GetSystemInfo
GetLocalTime
GetProcAddress
GlobalAlloc
VirtualAlloc
GetCurrentProcessId
ExitProcess
GetCurrentThreadId
GetLastError
LeaveCriticalSection
DeleteCriticalSection
WaitForSingleObject
SetHandleCount
GetStdHandle
GetSystemTime
CloseHandle

psapi

GetModuleFileNameExW
GetMappedFileNameW
GetModuleBaseNameW

shell32

DragFinish
ShellExecuteW
ExtractIconExW
Shell_NotifyIconW
SHGetSpecialFolderPathW

Sections

.text
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 7.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.mi4d
Size: 802KB - Virtual size: 801KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3fd33252d11bb05878072641343091ff

Headers

File Characteristics

Imports

msvcrt

kernel32

psapi

shell32

Sections

.text Size: 44KB - Virtual size: 44KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 512B - Virtual size: 7.0MB

.mi4d Size: 802KB - Virtual size: 801KB

.rsrc Size: 12KB - Virtual size: 13KB

.text
Size: 44KB - Virtual size: 44KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 512B - Virtual size: 7.0MB

.mi4d
Size: 802KB - Virtual size: 801KB

.rsrc
Size: 12KB - Virtual size: 13KB