0edac822844a750ac3fce2cbb58e52ee_JaffaCakes118

General

Target

0edac822844a750ac3fce2cbb58e52ee_JaffaCakes118
Size

552KB
MD5

0edac822844a750ac3fce2cbb58e52ee
SHA1

cffacbda39666f8b5498ecf6a1a4dc57745dde69
SHA256

d1c0a9d7b14e878edcd6e2f888d674f79327f2468f03fa8bc90392a96ea5ea0d
SHA512

bb871c30e34133411ed81f0f9bc1644aa668021cc1b3a360956f8fc58f72061c6a2e977e813325622f3ad7d7b8dff6f4802f51795323c40e590f1a4f00d38a5a
SSDEEP

12288:7kLVU0sySd84DccACyzFt98fj6WMxhEBMMObnIGpQRDofV84g:7km0syfCyj9m6TEybtQBot84

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0edac822844a750ac3fce2cbb58e52ee_JaffaCakes118

Files

0edac822844a750ac3fce2cbb58e52ee_JaffaCakes118
.exe windows:4 windows x86 arch:x86

fe0d780188af04b33c93864abdc4d0eb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetLastError
GetCurrentProcessId
VirtualAlloc
CreateFileW
LoadResource
InitializeCriticalSection
TerminateProcess
FreeLibrary
WriteFile
GetModuleHandleA
GetStringTypeA
WideCharToMultiByte
CreateMutexA
SetStdHandle
GetProcAddress
HeapSize
UnhandledExceptionFilter
LockResource
LocalAlloc
SizeofResource
GetCurrentProcess
DeleteCriticalSection
GetModuleFileNameA
GetFileSize
GetFileAttributesW
GetVersionExA
ExitProcess
HeapDestroy
SetEvent
WaitForSingleObject
GetConsoleOutputCP
EnterCriticalSection
HeapAlloc
GetStartupInfoA
GetCommandLineA
GetVersion
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsGetValue
GetLastError
GetEnvironmentVariableA
HeapCreate
VirtualFree
HeapFree
RtlUnwind
InterlockedDecrement
InterlockedIncrement
LeaveCriticalSection
GetCPInfo
GetACP
GetOEMCP
HeapReAlloc
LoadLibraryA
MultiByteToWideChar
GetStringTypeW
LCMapStringA
LCMapStringW

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 488KB - Virtual size: 491KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fe0d780188af04b33c93864abdc4d0eb

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 28KB - Virtual size: 27KB

.rdata Size: 28KB - Virtual size: 27KB

.data Size: 488KB - Virtual size: 491KB

.rsrc Size: 4KB - Virtual size: 1KB

.text
Size: 28KB - Virtual size: 27KB

.rdata
Size: 28KB - Virtual size: 27KB

.data
Size: 488KB - Virtual size: 491KB

.rsrc
Size: 4KB - Virtual size: 1KB