245628a5e2b19be4175d894c5508af99_JaffaCakes118

General

Target

245628a5e2b19be4175d894c5508af99_JaffaCakes118
Size

369KB
MD5

245628a5e2b19be4175d894c5508af99
SHA1

c7e72aa43c4e935887c5f77dd363d0e7293ec543
SHA256

d3d09f098038990fb3a3aa1420e3fc45ecd67158751e175db09bbeb4e6ea5af1
SHA512

1272c5c1f654e12ac602c9565692c035f6d9529fb31fb5168796da92f14f55a3eced9002f1b1edee6371a515d5a8ceb9b848aecc650cb2a6cbed53e1238eb7f6
SSDEEP

6144:ybS9mQUJPgAxlyaRTxAgLZ6RxW1gTcMa2dSjzTcQqBDSTNMYp:yWmQUpxYaRTxAaUIiDdSjPCBANM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
245628a5e2b19be4175d894c5508af99_JaffaCakes118

Files

245628a5e2b19be4175d894c5508af99_JaffaCakes118
.exe windows:1 windows x86 arch:x86

e9c1d00008b51031eaeb241b386cf39f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

comctl32

InitCommonControlsEx

kernel32

CloseHandle
CreateFileW
ExitProcess
FindClose
GetCommandLineW
GetCurrentProcess
GetFileSize
GetFileType
GetLastError
GetModuleHandleA
GetModuleHandleW
GetProcAddress
GetStartupInfoA
GetStringTypeA
GetVersionExA
GlobalAlloc
GlobalFree
MultiByteToWideChar
ReadFile
SetEndOfFile
SetErrorMode
SetFilePointer
SetLastError
Sleep
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
WideCharToMultiByte
WriteFile
FlushInstructionCache

ole32

CoInitialize
CoUninitialize

oleaut32

SysAllocStringByteLen
SysAllocStringLen
SysFreeString
VariantClear

user32

CharLowerBuffA
CharNextA
CharUpperBuffA
MessageBoxA
MessageBoxW

ws2_32

closesocket
WSACleanup

msvcrt

_controlfp
__set_app_type
__p__fmode
_adjust_fdiv
_access
__p__commode
__setusermatherr
_initterm
__getmainargs
__p__acmdln
exit
_XcptFilter
_exit
_pctype
_isctype
__mb_cur_max
_except_handler3

Sections

.text
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 333KB - Virtual size: 333KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e9c1d00008b51031eaeb241b386cf39f

Headers

File Characteristics

Imports

comctl32

kernel32

ole32

oleaut32

user32

ws2_32

msvcrt

Sections

.text Size: 32KB - Virtual size: 32KB

.data Size: 333KB - Virtual size: 333KB

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: 32KB - Virtual size: 32KB

.data
Size: 333KB - Virtual size: 333KB

.rsrc
Size: 3KB - Virtual size: 2KB