0acd926f06fd70a99c15bf2e42bba609_JaffaCakes118

General

Target

0acd926f06fd70a99c15bf2e42bba609_JaffaCakes118
Size

80KB
MD5

0acd926f06fd70a99c15bf2e42bba609
SHA1

3f0786181a0c7d0e688f5a32511bcab16cba96b9
SHA256

96e9298587a8a6984d2d4c168156e786b67ec128c8c12eb7684eb516a28b1a36
SHA512

439c7226efedb8b085402b1e8725885ff22701535f738b5fd69138683f182489b97f51c4fde999b4dc07ae926ceb0bab2a15bb037f8fc56a79b48782af362c51
SSDEEP

1536:S4lcNiHxx5WOh7rKlI7i8LGXO1clCG1QFA8RjC7HmWHqT8IKLQ6Zb4TYJCx+r2fW:L5LQ8LGeMWglDZLb4TYAg6fO0pJY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0acd926f06fd70a99c15bf2e42bba609_JaffaCakes118

Files

0acd926f06fd70a99c15bf2e42bba609_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5c7f5d9c5bc9811be5e1752b0efdf227

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
GetHandleInformation
FreeResource
IsBadCodePtr
OutputDebugStringA
FormatMessageA
EnumResourceTypesA
GetUserDefaultLangID
GetExitCodeThread
LoadLibraryA
FindAtomW
GetProcessIoCounters
RegisterWaitForSingleObject
GetModuleHandleA
IsBadStringPtrW
VirtualProtect
GetProcessAffinityMask
GetVolumeInformationW
Sleep
FreeEnvironmentStringsW
SetLastError
MapViewOfFileEx
OpenMutexW
VirtualAlloc
SetFilePointerEx
WaitForMultipleObjectsEx
ExitProcess
GetModuleHandleW

msvcrt

_mbscoll
ispunct
atan2
isprint
_msize
fflush
isalnum
signal
isspace
__doserrno
__crtCompareStringA
??1bad_cast@@UAE@XZ
isupper
??_7exception@@6B@
_itow
_sys_nerr
_ctype
__badioinfo
memcpy

user32

EqualRect
SetForegroundWindow
ModifyMenuW
CreateDialogParamW
CheckMenuItem
RemoveMenu
DefWindowProcW
OpenIcon
EnableWindow
LoadStringA
AdjustWindowRect

gdi32

DeleteObject
SetMapMode
SetTextColor
SetDIBits
GetRgnBox
GetDIBits
CreateCompatibleDC

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.debug
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 146B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5c7f5d9c5bc9811be5e1752b0efdf227

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

gdi32

Sections

.text Size: 28KB - Virtual size: 27KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 39KB - Virtual size: 38KB

.debug Size: 1KB - Virtual size: 1KB

.rsrc Size: 8KB - Virtual size: 7KB

.reloc Size: 512B - Virtual size: 146B

.text
Size: 28KB - Virtual size: 27KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 39KB - Virtual size: 38KB

.debug
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 8KB - Virtual size: 7KB

.reloc
Size: 512B - Virtual size: 146B