b6d7de5ac47c20455438240fe1d2dda0_JaffaCakes118

General

Target

b6d7de5ac47c20455438240fe1d2dda0_JaffaCakes118
Size

552KB
MD5

b6d7de5ac47c20455438240fe1d2dda0
SHA1

702df932d53385c0c961e37648a7fac9eb6c7a76
SHA256

8f6027f7d19f89f40870ec8d56469fdb357c426374cc7d36fe34f956b1c90082
SHA512

8df0ab6cf8081cc0e41abbadeb4ada5bd286408e928405634449f2a7fa524cfb6e5f60c8d29d461696236b142a6633f136ea7aed77a8410fa1211a5d1d356e25
SSDEEP

6144:6zPHbUV4/5/XSEH0uzrBP4crsx0t0Ld2CyIgs0/f6e7mY+pwdmL:HE5/lUUF/A0OoCUv5xd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b6d7de5ac47c20455438240fe1d2dda0_JaffaCakes118

Files

b6d7de5ac47c20455438240fe1d2dda0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1af3cda99c3d83d0c20d241289e52f94

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetSystemMetrics
UpdateWindow
ShowWindow
GetMessageA
DispatchMessageA
MessageBoxW
PostQuitMessage
CreateWindowExA
SetFocus
PostMessageA
SendMessageA
DefWindowProcA
LoadCursorA
LoadIconA
RegisterClassA
DestroyWindow

kernel32

HeapDestroy
GetFileType
GetStdHandle
SetHandleCount
GetOEMCP
GetACP
GetCPInfo
WideCharToMultiByte
GetEnvironmentStringsW
HeapCreate
FreeEnvironmentStringsW
GetStartupInfoA
CreateFileMappingA
CreateFileA
ExitProcess
GetTickCount
GetLastError
GetModuleHandleA
VirtualFree
RtlUnwind
WriteFile
GetEnvironmentStrings
LoadLibraryA
GetProcAddress
VirtualAlloc
FreeEnvironmentStringsA
HeapAlloc
GetModuleFileNameA
UnhandledExceptionFilter
GetCurrentProcess
GetCommandLineA
GetVersion
TerminateProcess
HeapFree

advapi32

RegOpenKeyExA
RegQueryValueExW
RegOpenKeyExW
RegCloseKey

ole32

CoInitialize
CoCreateInstanceEx
CoUninitialize

oleaut32

SysAllocString
SysFreeString

Sections

.text
Size: 329KB - Virtual size: 329KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 71KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 39KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 110KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1af3cda99c3d83d0c20d241289e52f94

Headers

File Characteristics

Imports

user32

kernel32

advapi32

ole32

oleaut32

Sections

.text Size: 329KB - Virtual size: 329KB

.rdata Size: 71KB - Virtual size: 71KB

.data Size: 39KB - Virtual size: 41KB

.rsrc Size: 110KB - Virtual size: 110KB

.text
Size: 329KB - Virtual size: 329KB

.rdata
Size: 71KB - Virtual size: 71KB

.data
Size: 39KB - Virtual size: 41KB

.rsrc
Size: 110KB - Virtual size: 110KB