14f03a45cb465f85aeca852f912cefaf_JaffaCakes118

General

Target

14f03a45cb465f85aeca852f912cefaf_JaffaCakes118
Size

104KB
MD5

14f03a45cb465f85aeca852f912cefaf
SHA1

0288d5bf623702fad09598ffcd065fb3251f82f6
SHA256

5a1e5da3848b4f3028d0a58d3e740aa6b32a39cd93fa3034068cf6fd7e69ba3d
SHA512

6bea3732063531df35d82d6b173739795fbf52b5339ece6c8e49b50a8a3128e050a70e10089bb7fd90b86f2edf311e95f6617c9476bfa0ae2581a8d15177f3c7
SSDEEP

3072:L29VAPEmlNzYkLDj3ceDDsZLYCu5sqKCImrEUuO:eVAFlNzpH3jDsZDXDgrEUu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
14f03a45cb465f85aeca852f912cefaf_JaffaCakes118

Files

14f03a45cb465f85aeca852f912cefaf_JaffaCakes118
.exe windows:5 windows x86 arch:x86

9ff24e4ce8486dac2e7bdd773a11a659

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

fclose
_flsbuf
_exit
_except_handler3
sqrt
exit
_initterm
_getcwd
_isctype
__setusermatherr
__p__commode
__p__fmode
__set_app_type
wcsstr
_strcmpi
__getmainargs
log
_errno
_XcptFilter
_acmdln
_adjust_fdiv

kernel32

GetEnvironmentStringsW
GlobalUnlock
GlobalLock
GetACP
FreeEnvironmentStringsW
VirtualFree
VirtualProtect
GetModuleHandleA
CompareStringA
lstrcpyA
lstrcmpA
GetLocaleInfoA
GetStartupInfoA
GlobalHandle
GetOEMCP
SetCurrentDirectoryA
GetTickCount
GetLocalTime

user32

ShowWindow
DrawTextA
GetSysColorBrush
IsDialogMessageA
PostQuitMessage
CloseClipboard
GetMenu
DrawEdge
GetMenuStringA
GetScrollInfo
LoadCursorA
SetWindowLongA
ShowOwnedPopups
GetSystemMenu
SetScrollPos
SetWindowsHookExA
FindWindowA
UnhookWindowsHookEx

oleaut32

VariantCopy
SafeArrayGetUBound
CreateErrorInfo
SetErrorInfo
SafeArrayPutElement
GetErrorInfo
SafeArrayCreate
VariantClear
LoadTypeLib

advapi32

RegOpenKeyExW
RegDeleteKeyA
RegEnumKeyExA
CryptCreateHash
IsValidSid
FreeSid
InitializeSecurityDescriptor
OpenSCManagerW
RegCreateKeyExW
RegDeleteValueW
RegOpenKeyW
LookupPrivilegeValueW
DeleteService
RegDeleteKeyW
OpenServiceW

Sections

.text
Size: 55KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9ff24e4ce8486dac2e7bdd773a11a659

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

oleaut32

advapi32

Sections

.text Size: 55KB - Virtual size: 55KB

.data Size: 16KB - Virtual size: 16KB

.rsrc Size: 31KB - Virtual size: 30KB

.text
Size: 55KB - Virtual size: 55KB

.data
Size: 16KB - Virtual size: 16KB

.rsrc
Size: 31KB - Virtual size: 30KB