2e195c0ea1d4980183df9fd9c5cd3741_JaffaCakes118

General

Target

2e195c0ea1d4980183df9fd9c5cd3741_JaffaCakes118
Size

124KB
MD5

2e195c0ea1d4980183df9fd9c5cd3741
SHA1

e6c4f99cb048dea05a77a1a1845770c898c721e9
SHA256

ed3bd08d2837fd121f5719cbc013699d20b104e052d9d8d2f9a2a81716cfcb05
SHA512

f9e6bb77bd2bc982fef4db9fabd17fba38dde61d798a0a44349c4ab50515193b0e1da7e88c5bfa2949847977892021dc651ce05fc1a5d5cffda0a658231c9fbb
SSDEEP

3072:P4jq9IicjrpnLrwA8Lf14WSNJgW4NMQxahEFbTRpgJCy:/91cjrxLUPfiHgW4L3ROJC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2e195c0ea1d4980183df9fd9c5cd3741_JaffaCakes118

Files

2e195c0ea1d4980183df9fd9c5cd3741_JaffaCakes118
.exe windows:3 windows x86 arch:x86

82d97b64e7c12387f2a3209fb32707d9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CreateEventA
EnterCriticalSection
GetCommandLineA
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetLastError
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetProcessHeap
GetTickCount
HeapAlloc
HeapDestroy
InterlockedCompareExchange
InterlockedDecrement
LeaveCriticalSection
LocalAlloc
MultiByteToWideChar
QueryPerformanceCounter
ReadFile
SetLastError

user32

CharNextA
DefWindowProcA
DestroyWindow
DispatchMessageA
EnableWindow
GetActiveWindow
GetDC
GetDesktopWindow
GetFocus
GetMenu
GetParent
GetPropA
GetSystemMetrics
GetWindowLongA
GetWindowRect
KillTimer
LoadCursorA
LoadStringA
MessageBoxA
PeekMessageA
PostMessageA
PostQuitMessage
ReleaseDC
SendDlgItemMessageA
SetTimer
SetWindowLongA
SetWindowPos

Sections

CODE
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

BSS
Size: 89KB - Virtual size: 308KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

82d97b64e7c12387f2a3209fb32707d9

Headers

File Characteristics

Imports

kernel32

user32

Sections

CODE Size: 26KB - Virtual size: 26KB

BSS Size: 89KB - Virtual size: 308KB

DATA Size: 5KB - Virtual size: 5KB

.idata Size: 1KB - Virtual size: 1KB

.rsrc Size: 1024B - Virtual size: 28KB

CODE
Size: 26KB - Virtual size: 26KB

BSS
Size: 89KB - Virtual size: 308KB

DATA
Size: 5KB - Virtual size: 5KB

.idata
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 1024B - Virtual size: 28KB