215a3833a4ef5a53da9b2e6018aa7db7_JaffaCakes118

General

Target

215a3833a4ef5a53da9b2e6018aa7db7_JaffaCakes118
Size

410KB
MD5

215a3833a4ef5a53da9b2e6018aa7db7
SHA1

60280259a0c3c73ed1c8d8cbabb0f6b29edd4e59
SHA256

5ccd345d5037adcd28fb74f5574d9801461affea95d4462667fc52a56ddb15de
SHA512

c882503cc2443d71e28c64b9bcf11770667e547ac4f060605a18d86ae39cb74672e170e3f57aec77c9f63174c334c49c5031c024e9d542124106fe38a12ea2f8
SSDEEP

12288:trbE+GS1l/g8iGotqUgsHwPESVXXrsWNQ5:trQdulvX9hVnrFN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
215a3833a4ef5a53da9b2e6018aa7db7_JaffaCakes118

Files

215a3833a4ef5a53da9b2e6018aa7db7_JaffaCakes118
.exe windows:3304 windows x86 arch:x86

4f335c3a9e99cabcceb5f75857a8ff5f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnterCriticalSection
HeapDestroy
LeaveCriticalSection
InterlockedDecrement
GetModuleHandleA
HeapFree
SetLastError
InitializeCriticalSection
Sleep
GetTickCount
HeapAlloc
GetCommandLineA
VirtualAlloc
GetLastError
VirtualAlloc
GetProcAddress
GetACP
EnterCriticalSection
SetEvent
GetModuleFileNameA
InitializeCriticalSection
ExitProcess
GetCurrentProcess
GetCurrentProcess
FreeLibrary
WideCharToMultiByte
WideCharToMultiByte
InterlockedIncrement
GetModuleHandleW
VirtualFree
DeleteCriticalSection
HeapAlloc
ExitProcess
UnhandledExceptionFilter

user32

MessageBoxA
PtInRect
MessageBoxA
DestroyMenu
PtInRect
ShowWindow
CreateWindowExW
CreateWindowExW
CreateWindowExW
SystemParametersInfoW
CallWindowProcW
CreateDialogParamW
SendMessageA
SetFocus
PtInRect
wsprintfA
GetDlgCtrlID
SystemParametersInfoW
ReleaseDC
FillRect
DispatchMessageA
PostQuitMessage
LoadStringA
IsWindow
MapWindowPoints
MapWindowPoints
GetClientRect
EndPaint
FillRect
RegisterClassW
UpdateWindow
MoveWindow
CreateWindowExW
GetWindowTextW
SetCursor
FindWindowW
GetMenu
LoadStringW
InvalidateRect
GetSysColor
DispatchMessageW
EnableMenuItem
EndDialog
GetDlgCtrlID

Sections

.text
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 387KB - Virtual size: 964KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4f335c3a9e99cabcceb5f75857a8ff5f

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 9KB - Virtual size: 12KB

.data Size: 387KB - Virtual size: 964KB

.adata Size: 512B - Virtual size: 4KB

.rdata Size: 2KB - Virtual size: 4KB

.rsrc Size: 10KB - Virtual size: 12KB

.text
Size: 9KB - Virtual size: 12KB

.data
Size: 387KB - Virtual size: 964KB

.adata
Size: 512B - Virtual size: 4KB

.rdata
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 10KB - Virtual size: 12KB