17fc7b1e598acfcfb2aea77bd573c4be_JaffaCakes118

General

Target

17fc7b1e598acfcfb2aea77bd573c4be_JaffaCakes118
Size

3.4MB
MD5

17fc7b1e598acfcfb2aea77bd573c4be
SHA1

29b0224f321562b7c5b639549c036e2e5c658a64
SHA256

10f7f9193ec994371838d8ff418ecd06f83ca11c4daf53f64db483d460d844cc
SHA512

76c86028571ef7e4a4d9d37f540ed332051fbfbfb0fe8ed02eb50690909071773f21545ece1111d7f4d1f90b55edab6220fc4a8761e32d810640a447895e11ac
SSDEEP

98304:vC62eA3HoaLNkjTtEj53ifLXH+UeYeMbZzn:vP0LNTB4/RB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
17fc7b1e598acfcfb2aea77bd573c4be_JaffaCakes118

Files

17fc7b1e598acfcfb2aea77bd573c4be_JaffaCakes118
.exe windows:4 windows x86 arch:x86

cde1ab9d73d1b4f220fe2a88abf8f823

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
GetCurrentThreadId
GetCurrentProcess
GetCurrentProcessId
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
GetModuleHandleW
QueryPerformanceCounter
GetProcAddress
CloseHandle
TerminateProcess
GetTickCount
FreeLibrary
WideCharToMultiByte
HeapAlloc
LocalFree
LeaveCriticalSection
WriteFile
GetProcessHeap
GetModuleFileNameW
GetStartupInfoW
IsDebuggerPresent
FindClose
ReadFile
GetACP
FormatMessageW
HeapReAlloc
GetConsoleMode
FlushFileBuffers
CreateEventW
CreateThread
GetCPInfo
GetFileAttributesW
CompareStringW
GetStringTypeW
RtlUnwind
LCMapStringW
GetModuleFileNameA
GetEnvironmentStringsW
SetStdHandle
FreeEnvironmentStringsW
DeleteFileW
VirtualAlloc
LocalAlloc
GetCommandLineA
ReleaseMutex
OutputDebugStringW
GetFileSize
EncodePointer
lstrlenW
LoadLibraryA
GetModuleHandleExW
GetLocaleInfoW
CreateDirectoryW
LoadResource
GetExitCodeProcess

user32

TranslateMessage
LoadStringW
DefWindowProcW
PostQuitMessage
GetWindowLongW
GetMessageW
GetDlgItem
SendMessageW
SetWindowPos
EnableWindow
IsWindow
LoadCursorW
GetParent
EndDialog
SetWindowTextW
SetTimer
LoadIconW
SetForegroundWindow
ScreenToClient
KillTimer
RegisterClassW
EnableMenuItem
GetWindow
UpdateWindow
MessageBoxA

Sections

.data
Size: - Virtual size: 612KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cde1ab9d73d1b4f220fe2a88abf8f823

Headers

File Characteristics

Imports

kernel32

user32

Sections

.data Size: - Virtual size: 612KB

.rdata Size: 3.4MB - Virtual size: 3.4MB

.idata Size: 2KB - Virtual size: 2KB

.text Size: 6KB - Virtual size: 6KB

.data
Size: - Virtual size: 612KB

.rdata
Size: 3.4MB - Virtual size: 3.4MB

.idata
Size: 2KB - Virtual size: 2KB

.text
Size: 6KB - Virtual size: 6KB