1aaad149557c83ac742baaf1a19a6381_JaffaCakes118

General

Target

1aaad149557c83ac742baaf1a19a6381_JaffaCakes118
Size

172KB
MD5

1aaad149557c83ac742baaf1a19a6381
SHA1

bc352389d96a87ac8ea457bac6d44da25ff13d45
SHA256

926b68098677c347c626d7626d631d616618d133de1a7bd3220f1229e3c6494c
SHA512

3342aaf6159654c8ce720f15de2fabe76629207706bdcaddea77602c13a245b9d532967040b1cac2fbdfcbc76d88c1893bc31ce923b39c09c77790d08ebba913
SSDEEP

3072:W5+dskbnXnT2EmK21shcpFLDYI9i1NGx1wgZ0:W5+ds0QK21shn4i1Nv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1aaad149557c83ac742baaf1a19a6381_JaffaCakes118

Files

1aaad149557c83ac742baaf1a19a6381_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b1ef11703e23b898b3d5361c2770c946

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetSystemMenu
UnhookWindowsHookEx
GetSystemMetrics
ClientToScreen
GetSubMenu
SetTimer
SendMessageW
GetScrollInfo
SetWindowPos
PeekMessageW
ReleaseDC
EndDialog
IsIconic
GetSysColor
PeekMessageA
SetWindowTextW
RegisterClassW

msvcrt

_CxxThrowException
_controlfp
qsort
malloc
_amsg_exit
wcschr
_wcsnicmp
??1exception@@UAE@XZ
__dllonexit

kernel32

GetACP
LoadLibraryA
GetFileAttributesA
SetLastError
SetStdHandle
HeapAlloc
GetVersionExW
LocalAlloc
GetOEMCP
GlobalAlloc
LeaveCriticalSection
MultiByteToWideChar
FreeResource
WideCharToMultiByte
GetCurrentProcess
VirtualProtect
GetCurrentThread
CompareFileTime
GetProcAddress
LoadLibraryExA
CompareStringW
GetStartupInfoA
WriteFile
IsDBCSLeadByte
GetTickCount
GetLastError
RaiseException
GetVersion
Sleep
GetStartupInfoW
ExitProcess
RtlUnwind
EnterCriticalSection
GetModuleHandleA
LockResource
UnhandledExceptionFilter
FreeLibrary
CloseHandle
FindFirstFileW
VirtualFree
GlobalHandle
SetConsoleCP
SizeofResource

Sections

.text
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 133KB - Virtual size: 190KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b1ef11703e23b898b3d5361c2770c946

Headers

File Characteristics

Imports

user32

msvcrt

kernel32

Sections

.text Size: 25KB - Virtual size: 24KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 133KB - Virtual size: 190KB

.rsrc Size: 17KB - Virtual size: 16KB

.text
Size: 25KB - Virtual size: 24KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 133KB - Virtual size: 190KB

.rsrc
Size: 17KB - Virtual size: 16KB