08e0aa235c774809398048dfa63b6085_JaffaCakes118

General

Target

08e0aa235c774809398048dfa63b6085_JaffaCakes118
Size

21KB
MD5

08e0aa235c774809398048dfa63b6085
SHA1

dbced072054a00ccbba62c0c8433aaf33a4fe101
SHA256

94d362867c43b7756ec6c7aecc8880271e4d774f463bac582ba4d5723d70eb73
SHA512

2ef144fcd73d1ba5bbb3ab55cf193007068c8754ddc8bac0435fdfe401d442584bcd3b1a2ef1f9add8fbed5f0e2c61cabde79c80c1d935583bba71e54eb52096
SSDEEP

384:uPYlNe7+S6ay4PNL2NtIWnOFly2XlrmL6ZEpsEJ:u2S6aPkQ/C2qsEJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
08e0aa235c774809398048dfa63b6085_JaffaCakes118

Files

08e0aa235c774809398048dfa63b6085_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6af4535939d93670ccc42d846f9e7ae5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MultiByteToWideChar
GetDriveTypeA
GetLogicalDriveStringsA
GetPrivateProfileStringA
GetModuleFileNameA
SetErrorMode
GetEnvironmentStringsW
WideCharToMultiByte
LCMapStringA
CloseHandle
LCMapStringW
SetStdHandle
FlushFileBuffers
SetFilePointer
GetLastError
LoadLibraryA
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
RtlUnwind
UnhandledExceptionFilter
FreeEnvironmentStringsA
OpenFile
GetEnvironmentStrings
FreeEnvironmentStringsW
GetStdHandle
GetFileType
GetCPInfo
GetACP
GetOEMCP
SetHandleCount
HeapAlloc
GetProcAddress
HeapCreate
WriteFile
HeapFree

user32

SetDlgItemTextA
DialogBoxParamA
GetSystemMetrics
SetWindowTextA
GetWindowRect
EndDialog
SetWindowPos
MessageBeep

shell32

ShellExecuteA

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 165B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

6af4535939d93670ccc42d846f9e7ae5

Headers

File Characteristics

Imports

kernel32

user32

shell32

Sections

.text Size: 10KB - Virtual size: 10KB

.rdata Size: 512B - Virtual size: 165B

.data Size: 4KB - Virtual size: 9KB

.idata Size: 1KB - Virtual size: 1KB

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 1KB - Virtual size: 21KB

.text
Size: 10KB - Virtual size: 10KB

.rdata
Size: 512B - Virtual size: 165B

.data
Size: 4KB - Virtual size: 9KB

.idata
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 1KB - Virtual size: 21KB