18405f799a6011a597fdad37d7417094_JaffaCakes118

General

Target

18405f799a6011a597fdad37d7417094_JaffaCakes118
Size

84KB
MD5

18405f799a6011a597fdad37d7417094
SHA1

a8d51d8fae1cc0afda71dd99983177102b3c9bdb
SHA256

c3da5991bea5e44b6927d2359f29adbb58c8203f16912ca1727af827cf6894f0
SHA512

ab5bbc476a0fdeecb8c5e12b4ada48c2b1671cc1c291b1044db20b2270fd456bf120e68841492267001b6ad34435c34ca4625cfd74934b599417e28a5f9c2496
SSDEEP

768:5OGw8I8JoyOw0/hkoJgKj01B0UMgJ88TcCLiETPEnjoSPf2Da9b8+tAh2oOV5:M3N6RLo6Kj0EK8qcCPSoSPODa95o65

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
18405f799a6011a597fdad37d7417094_JaffaCakes118

Files

18405f799a6011a597fdad37d7417094_JaffaCakes118
.exe windows:4 windows x86 arch:x86

bec03c5a20517d580be8185d3f97dcb4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindResourceA
GetModuleHandleA
SizeofResource
GetStringTypeA
LCMapStringW
LoadResource
LockResource
CreateFileA
WriteFile
CloseHandle
lstrlenA
GetSystemDirectoryA
LCMapStringA
MultiByteToWideChar
LoadLibraryA
GetProcAddress
HeapReAlloc
VirtualAlloc
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
VirtualFree
HeapFree
RtlUnwind
GetCPInfo
GetACP
GetOEMCP
HeapAlloc
GetStringTypeW

user32

wsprintfA

advapi32

RegCreateKeyA
RegSetValueExA
RegOpenKeyA
RegCloseKey

ole32

CoInitialize
CoUninitialize

wininet

InternetCloseHandle
InternetOpenUrlA
InternetOpenA

Sections

.text
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 60KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bec03c5a20517d580be8185d3f97dcb4

Headers

File Characteristics

Imports

kernel32

user32

advapi32

ole32

wininet

Sections

.text Size: 12KB - Virtual size: 10KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 2KB

.rsrc Size: 60KB - Virtual size: 56KB

.text
Size: 12KB - Virtual size: 10KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 60KB - Virtual size: 56KB