23273a83bfd7aed10b9403e23a8bcba9_JaffaCakes118

General

Target

23273a83bfd7aed10b9403e23a8bcba9_JaffaCakes118
Size

272KB
MD5

23273a83bfd7aed10b9403e23a8bcba9
SHA1

78d1c1e11ebae22849bccb3eb154ec986d992364
SHA256

f6c62f9f846b3d100d60b1f2ae57a71c91dd8dc215dce652e2c85dff60c0197f
SHA512

279f1e6887adccb2d679736354b5df51c78e7308c05b47ae2dba66ec7d73e46ace8aa6ec33a2001cce7f6a20870ea3ea6acf4f49ca8f137aa11dddb26487ce90
SSDEEP

6144:/gLKYYoeCQEgGS0t1lem1qXAva/BeIHhAMMwXS:4rZeJEg+lHi9BeIHhAMMwXS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
23273a83bfd7aed10b9403e23a8bcba9_JaffaCakes118

Files

23273a83bfd7aed10b9403e23a8bcba9_JaffaCakes118
.exe windows:5 windows x86 arch:x86

b0057c39f9035a6d0abca074f13bd4e0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
Sleep
GetTickCount
GetProcAddress
LoadLibraryA
GetModuleHandleW
VirtualProtect
TlsFree
InterlockedIncrement
InterlockedDecrement
EncodePointer
DecodePointer
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
RaiseException
RtlUnwind
TlsAlloc
TlsGetValue
TlsSetValue
SetLastError
GetCurrentThreadId
GetLastError
ExitProcess
GetCommandLineA
HeapSetInformation
HeapFree
WideCharToMultiByte
LCMapStringW
MultiByteToWideChar
GetCPInfo
HeapAlloc
IsProcessorFeaturePresent
InitializeCriticalSectionAndSpinCount
GetACP
GetOEMCP
IsValidCodePage
LoadLibraryW
GetLocaleInfoW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
TerminateProcess
GetCurrentProcess
WriteFile
GetStdHandle
GetModuleFileNameW
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetStartupInfoW
HeapCreate
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
HeapSize
GetConsoleCP
GetConsoleMode
FlushFileBuffers
ReadFile
SetFilePointer
CloseHandle
GetStringTypeW
HeapReAlloc
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
WriteConsoleW
SetStdHandle
CreateFileW

Sections

.text
Size: 75KB - Virtual size: 75KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 141KB - Virtual size: 2.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b0057c39f9035a6d0abca074f13bd4e0

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Sections

.text Size: 75KB - Virtual size: 75KB

.rdata Size: 20KB - Virtual size: 19KB

.data Size: 141KB - Virtual size: 2.0MB

.rsrc Size: 34KB - Virtual size: 34KB

.text
Size: 75KB - Virtual size: 75KB

.rdata
Size: 20KB - Virtual size: 19KB

.data
Size: 141KB - Virtual size: 2.0MB

.rsrc
Size: 34KB - Virtual size: 34KB