22425fe829e55efc427478a203cbff74_JaffaCakes118

General

Target

22425fe829e55efc427478a203cbff74_JaffaCakes118
Size

114KB
MD5

22425fe829e55efc427478a203cbff74
SHA1

c7f21c9aea4149c1193765e744c3bb6b3639dab3
SHA256

8d61b0f860d4a280d1a6bb6f4b5142a5a4bc921ce373e43fcc88ec414e0b0f66
SHA512

f7556971b7072f29737c530349340c86ac044ae1340312e1c8435d762da792f05ef7a46412cb0c109adf4a169c20c14f237e6e4f51593e8ca5c6646c64ddbcd6
SSDEEP

3072:wxF7W+UnNf+OY/gU2Ns4PWG+loqOxQ8lK+D5QR2Whb:wL7FC+OV5sm6oB5w+DOg8b

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
22425fe829e55efc427478a203cbff74_JaffaCakes118

Files

22425fe829e55efc427478a203cbff74_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a0b015d7d40baefa68eb98e7c1c7a026

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegOpenKeyA
RegSetValueExA

user32

wsprintfW
DefWindowProcA
PostQuitMessage
RegisterClassA
CreateWindowExA
GetMessageA
TranslateMessage
DispatchMessageA

msvcrt

_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
??2@YAPAXI@Z
memcpy
??3@YAXPAX@Z
memset
_beginthreadex

kernel32

GetStartupInfoA
GetModuleHandleA
GetLogicalDriveStringsW
GetWindowsDirectoryW
GetFileTime
SetFileTime
FindFirstFileW
lstrcmpW
FindNextFileW
FindClose
SetFileAttributesW
lstrcpyW
lstrlenW
lstrcatW
FindResourceA
SizeofResource
LoadResource
LockResource
CreateFileW
WriteFile
FreeResource
BeginUpdateResourceW
LoadLibraryA
GetProcAddress
EndUpdateResourceA
FreeLibrary
GetDriveTypeW
Sleep
CloseHandle
DeviceIoControl

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 844B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a0b015d7d40baefa68eb98e7c1c7a026

Headers

File Characteristics

Imports

advapi32

user32

msvcrt

kernel32

Sections

.text Size: 2KB - Virtual size: 2KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 512B - Virtual size: 844B

.rsrc Size: 108KB - Virtual size: 107KB

.text
Size: 2KB - Virtual size: 2KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 512B - Virtual size: 844B

.rsrc
Size: 108KB - Virtual size: 107KB