2166b24697f4d53418e801de4d01a124_JaffaCakes118

General

Target

2166b24697f4d53418e801de4d01a124_JaffaCakes118
Size

819KB
MD5

2166b24697f4d53418e801de4d01a124
SHA1

6f91ed2bfe2fcb89b16730e99728ceeaa050ab20
SHA256

919f3ced638347e01bb27fb774642904465b17cbd2986dcecb4d9adc87148632
SHA512

33bad743afad50949a3f8266765d2d85e9bd58abfe9b6f53cdb27641d96247589e34a26caa9b0d1c3b4fdef21b6b457fcd728b112136af49d75b6bf71b88dc30
SSDEEP

24576:m9ae0yy6GnxBCRDvjc2JrzxCLcTV5n72WoSV:uaoyVnxqD7c2dzxCKSWoI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2166b24697f4d53418e801de4d01a124_JaffaCakes118

Files

2166b24697f4d53418e801de4d01a124_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2dc6402ba70c8d4ab40fa57054d7f758

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

lstrcatA
InitializeCriticalSection
GetProcAddress
LocalFree
RaiseException
LocalAlloc
GetModuleHandleA
LeaveCriticalSection
EnterCriticalSection
SearchPathA
ResumeThread
WriteProcessMemory
HeapValidate
GetCurrentThreadId
QueryPerformanceCounter
QueryPerformanceFrequency
GetPrivateProfileSectionA
GetStringTypeA
LCMapStringW
LCMapStringA
RtlUnwind
WideCharToMultiByte
MultiByteToWideChar
GetStringTypeW

user32

DefWindowProcA
AdjustWindowRectEx

Sections

0
Size: - Virtual size: 420KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

1
Size: 630KB - Virtual size: 648KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

2
Size: 24KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

3
Size: 48KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

4
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

5
Size: 109KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

2dc6402ba70c8d4ab40fa57054d7f758

Headers

File Characteristics

Imports

kernel32

user32

Sections

0 Size: - Virtual size: 420KB

1 Size: 630KB - Virtual size: 648KB

2 Size: 24KB - Virtual size: 28KB

3 Size: 48KB - Virtual size: 75KB

4 Size: 3KB - Virtual size: 3KB

5 Size: 109KB - Virtual size: 112KB

0
Size: - Virtual size: 420KB

1
Size: 630KB - Virtual size: 648KB

2
Size: 24KB - Virtual size: 28KB

3
Size: 48KB - Virtual size: 75KB

4
Size: 3KB - Virtual size: 3KB

5
Size: 109KB - Virtual size: 112KB