04bd1114e8d461082ccf69f5995cff5b_JaffaCakes118

General

Target

04bd1114e8d461082ccf69f5995cff5b_JaffaCakes118
Size

14KB
MD5

04bd1114e8d461082ccf69f5995cff5b
SHA1

ab846eccbd0caa8d0259791bfbbfc661dbfae6d1
SHA256

28d37859469f28d60ca175cd939dc2494921594d67cf3207cc5e42cc754711cb
SHA512

d694dc66c20b68141c8b1b0ce71e4ebd4a27ce1ed96dc04294c5ffa8da6d59007ea2b978ffa994954aca3f727e3fb490462c24c12ddacb0f17f08d6e8890a24f
SSDEEP

384:PcsN6dwqEtrOx0Pba3sA01KKn8JhFj/S5md:EsE2qEtqLP0Z87Fja5m

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
04bd1114e8d461082ccf69f5995cff5b_JaffaCakes118

Files

04bd1114e8d461082ccf69f5995cff5b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b0a3f5b1b2449097315923037a56cc70

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetCurrentDirectoryA
GetModuleFileNameA
GetModuleHandleA
WriteFile
DeleteFileA
ExitProcess
CreateProcessA
SetFileAttributesA
lstrlenA
CreateThread
Sleep
GetTickCount
lstrcmpA
GetComputerNameA
WaitForSingleObject
CreateMutexA
GetWindowsDirectoryA
CreateFileA
GetFileTime
CloseHandle
SetFileTime
CopyFileA

user32

wsprintfA
wvsprintfA
DefWindowProcA
KillTimer
MoveWindow
SetTimer
LoadIconA
LoadCursorA
RegisterClassExA
CreateWindowExA
GetMessageA
TranslateMessage
DispatchMessageA
ShowWindow

advapi32

RegDeleteValueA
RegSetValueExA
RegCreateKeyExA
GetUserNameA
RegCloseKey

shell32

ShellExecuteA

msvcrt

memcmp
_except_handler3
strncpy
srand
strcmp
_strcmpi
free
rand
memset
strcpy
malloc
strlen
strcat

wininet

InternetGetConnectedState

ws2_32

send
recv
closesocket
accept
listen
bind
htons
WSACleanup
connect
gethostbyname
inet_addr
WSAAsyncSelect
WSAGetLastError
WSAStartup
socket

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b0a3f5b1b2449097315923037a56cc70

Headers

File Characteristics

Imports

kernel32

user32

advapi32

shell32

msvcrt

wininet

ws2_32

Sections

.text Size: 9KB - Virtual size: 9KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 1KB - Virtual size: 1KB

.text
Size: 9KB - Virtual size: 9KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 1KB - Virtual size: 1KB