17a30d072c5daa7f8072cf22cae1ff6c_JaffaCakes118

General

Target

17a30d072c5daa7f8072cf22cae1ff6c_JaffaCakes118
Size

222KB
MD5

17a30d072c5daa7f8072cf22cae1ff6c
SHA1

2377e07c0f4133b173c9ba1e0b7a9047cb651a4f
SHA256

f7f0dd93865f91428a180774189789a5c715f3d1a324e147fb6ea864f1aaaeba
SHA512

289a6c42fd3d6bcfff03c4487928666ebfce434e57eecc1c1f669db26e01c61f37ede68b647d596f62bebde7dcc1fadd675f756bbe624394ce0fcd595ec0ce86
SSDEEP

3072:DVGISvtbxO8A5QgeheCgAgdWh8YwqHi1B9ccy4uSDJ3W9OPOXkDWJC6F:DEA53AeXEH4sy4g5WX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
17a30d072c5daa7f8072cf22cae1ff6c_JaffaCakes118

Files

17a30d072c5daa7f8072cf22cae1ff6c_JaffaCakes118
.exe windows:1 windows x86 arch:x86

332df9ef2aafdf044b440407d76c7dd5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_initterm
fmod
_putwch
_wtol
__set_app_type
ungetwc
_swab
_except_handler3
_vscprintf
_snwprintf
_fdopen
srand
_ismbclower
perror
_fstat
strtoul
_wtempnam
_ungetch
memcpy
_snscanf
_controlfp
getchar
__p__commode
_commit
wcsrchr
_wsearchenv
longjmp
__setusermatherr
__getmainargs
_wspawnvp
_adjust_fdiv
_XcptFilter
sscanf
_ismbcl0
clock
exit
_mbsncoll
_exit
puts
getc
_acmdln
localtime
isleadbyte
__p__fmode
_lrotl
isupper
mktime
_ecvt
_fstati64
_lock

kernel32

CreateFileA
HeapCreate
GetTimeFormatA
GetDriveTypeA
ReadFile
HeapAlloc
CreateFileMappingA
LoadLibraryA
GetComputerNameW
GetOEMCP
ResumeThread
ReadProcessMemory
SetThreadAffinityMask
TlsFree
IsBadReadPtr
SetEndOfFile
GetEnvironmentStringsW
SetEvent
GetCurrentDirectoryA
LCMapStringA
GlobalMemoryStatus
GetModuleHandleA
WideCharToMultiByte
GetModuleFileNameA
FileTimeToSystemTime
FindClose
CreateEventW
GetStartupInfoA
UnmapViewOfFile
LeaveCriticalSection
DeleteFileA
DeviceIoControl

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 206KB - Virtual size: 206KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 141B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 96B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

332df9ef2aafdf044b440407d76c7dd5

Headers

File Characteristics

Imports

msvcrt

kernel32

Sections

.text Size: 13KB - Virtual size: 12KB

.rdata Size: 206KB - Virtual size: 206KB

.data Size: 512B - Virtual size: 141B

.rsrc Size: 512B - Virtual size: 96B

.text
Size: 13KB - Virtual size: 12KB

.rdata
Size: 206KB - Virtual size: 206KB

.data
Size: 512B - Virtual size: 141B

.rsrc
Size: 512B - Virtual size: 96B