02c0d2b52611334f48115b9b9637c00c_JaffaCakes118

General

Target

02c0d2b52611334f48115b9b9637c00c_JaffaCakes118
Size

77KB
MD5

02c0d2b52611334f48115b9b9637c00c
SHA1

8dbd277a4b1550779e2e64b13664f9d2a316df15
SHA256

54c61e01618f83edf568d27d6042394622ff203ee219ddacb9c0acbf9464742e
SHA512

0d71305836aec26e00cf6b2cd385c4836f4331b8f4cf4719fac4059d98932a699b2b079413fc6fb6bd47dca3494c2c5ae3279dd1fb721e36c48391134b5a8290
SSDEEP

384:dTAwmlZFVZMqzyy6P8l+yioy7PueKJyuPueKJyuPueKJyuPueKJyuPueKJyuPueK:dAbZMkyLP8ljioyHGGGGGGGGGGGC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
02c0d2b52611334f48115b9b9637c00c_JaffaCakes118

Files

02c0d2b52611334f48115b9b9637c00c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

773fe54524e6846e8e04c10302cafbcf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
GetModuleFileNameA
HeapFree
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
LoadLibraryA
GetProcAddress
GetOEMCP
GetACP
GetCPInfo
HeapReAlloc
VirtualAlloc
HeapAlloc
WriteFile
RtlUnwind
VirtualFree
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
CreateProcessA
TerminateProcess
GetCurrentProcess
HeapCreate
GetEnvironmentStringsW
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy

user32

DispatchMessageA
TranslateMessage
TranslateAcceleratorA
KillTimer
PostQuitMessage
SetTimer
BeginPaint
EndPaint
DefWindowProcA
CreateWindowExA
ShowWindow
UpdateWindow
LoadIconA
LoadCursorA
RegisterClassExA
LoadStringA
LoadAcceleratorsA
GetMessageA

advapi32

RegCreateKeyExA
RegSetValueExA

Sections

.text
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

773fe54524e6846e8e04c10302cafbcf

Headers

File Characteristics

Imports

kernel32

user32

advapi32

Sections

.text Size: 12KB - Virtual size: 10KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 3KB

.rsrc Size: 4KB - Virtual size: 1KB

.text
Size: 12KB - Virtual size: 10KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 4KB - Virtual size: 1KB