035ce53c33fcccde2f010b7b600bed81_JaffaCakes118

General

Target

035ce53c33fcccde2f010b7b600bed81_JaffaCakes118
Size

104KB
MD5

035ce53c33fcccde2f010b7b600bed81
SHA1

d548a9a2ab3f61407a97a8f38be34130f798dfe1
SHA256

f5d63826b0e8681f6c50b0198e68280c7ff3a0b474f5d056bd3e18e343040f05
SHA512

45b60efc93ff3e310af33ab3e47e2f39db48240843328dfa598f6adea7215e145a6f0badc9300e900ddcd011eeb28c34ebf74686774c9bc51c9dd0178553d758
SSDEEP

1536:Ffn5Wt/ooGwIAhO/6oGe5SlyT2jdkkccOC5+AG3GSwoIJqd:Z56oopnY/6i65EcO4I3GSwoIJqd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
035ce53c33fcccde2f010b7b600bed81_JaffaCakes118

Files

035ce53c33fcccde2f010b7b600bed81_JaffaCakes118
.exe windows:4 windows x86 arch:x86

19db3433542f4465d9d7a1d5ac62406f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CopyFileA
GetModuleFileNameA
GetSystemDirectoryA
CloseHandle
GlobalFree
WriteFile
CreateFileA
lstrcatA
LockResource
GlobalAlloc
LoadResource
SizeofResource
LoadLibraryA
GetStringTypeA
SetEndOfFile
GetOEMCP
GetACP
GetCPInfo
ReadFile
FlushFileBuffers
SetStdHandle
HeapReAlloc
VirtualAlloc
RtlUnwind
FindResourceA
GetProcAddress
VirtualFree
HeapCreate
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
HeapFree
GetLastError
TerminateProcess
GetCurrentProcess
SetFilePointer
HeapAlloc
WideCharToMultiByte
MultiByteToWideChar
LCMapStringA
LCMapStringW
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
GetStringTypeW

user32

PostQuitMessage
DefWindowProcA
LoadCursorA
LoadIconA
CreateWindowExA
ShowWindow
UpdateWindow
GetMessageA
TranslateMessage
DispatchMessageA
RegisterClassA

gdi32

GetStockObject

shell32

ShellExecuteA

Sections

.text
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

19db3433542f4465d9d7a1d5ac62406f

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

Sections

.text Size: 20KB - Virtual size: 17KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 7KB

.rsrc Size: 72KB - Virtual size: 68KB

.text
Size: 20KB - Virtual size: 17KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 7KB

.rsrc
Size: 72KB - Virtual size: 68KB