09b06bdaed15cf6256ee0ae4b2358a8e_JaffaCakes118

General

Target

09b06bdaed15cf6256ee0ae4b2358a8e_JaffaCakes118
Size

236KB
MD5

09b06bdaed15cf6256ee0ae4b2358a8e
SHA1

535f9b8fbb6be81dbef2e0cf02d5b2db99ab138e
SHA256

3034dbe6b332c55bd7dab424055fc7b639e7b9b91ef341584e21289266712cb5
SHA512

c4b4b2cd998241908e58e3eca31d1107e4c776ae3091d1034246a41230099521ddfd1bdb3e2461a2be0f3d7715cab5f3d83e35c811563150fc27ead399638eee
SSDEEP

6144:Nl66ETZBuw94Im5GQS3I3p2IaYbCLLHAPQke/QuiTQ:K6AZBuDIfr3ipxCLb9AQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
09b06bdaed15cf6256ee0ae4b2358a8e_JaffaCakes118

Files

09b06bdaed15cf6256ee0ae4b2358a8e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

fa9a523132f0bc36f9a60a101487f25e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
CloseHandle
UnmapViewOfFile
lstrcpyA
GetLastError
lstrlenA
GetModuleHandleA
GetStartupInfoA

user32

wsprintfA

msvcrt

strchr
__dllonexit
_onexit
_exit
atol
exit
_acmdln
_memicmp
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_controlfp
isspace
memchr
_except_handler3
time
localtime
difftime
clock
ctime
__getmainargs
asctime
_XcptFilter

msvcp60

?cout@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
?endl@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@1@AAV21@@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@N@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@J@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
??1_Winit@std@@QAE@XZ
??0_Winit@std@@QAE@XZ
??1Init@ios_base@std@@QAE@XZ
??0Init@ios_base@std@@QAE@XZ
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@PBD@Z

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 225KB - Virtual size: 449KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fa9a523132f0bc36f9a60a101487f25e

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

msvcp60

Sections

.text Size: 7KB - Virtual size: 6KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 225KB - Virtual size: 449KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 7KB - Virtual size: 6KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 225KB - Virtual size: 449KB

.rsrc
Size: 1KB - Virtual size: 1KB