2c53dbf7508ddd0f9e7cbe610e018241_JaffaCakes118

General

Target

2c53dbf7508ddd0f9e7cbe610e018241_JaffaCakes118
Size

269KB
MD5

2c53dbf7508ddd0f9e7cbe610e018241
SHA1

e3ee812dd38add3ce1e2407418d47171cff0fd24
SHA256

83205e9dfd35afb44d39f3f6838635e435d2bf5cf24efa96a3569a9654091ea2
SHA512

6b8725def97081679b20c3af4cbe4bb57999d13b1a42c2fff6d2a5efaa3c1a1f5e606c6b6632845a4b0e3339c0471ae3a149feb77c5b8b953311cc9e68506072
SSDEEP

6144:ssoS7JFzs/CENwV972dM4O+9/eprAtiJY+DWEzpiR/ZDPiCi8us:ssXQiV9KxO+Hi7xuKTG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2c53dbf7508ddd0f9e7cbe610e018241_JaffaCakes118

Files

2c53dbf7508ddd0f9e7cbe610e018241_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a0f65be0df43b2f37d324ea652ef162e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InitializeCriticalSection
SetEnvironmentVariableA
SetLastError
GetCommandLineA
GetProcAddress
TlsAlloc
HeapReAlloc
TlsGetValue
GetCurrentThread
HeapDestroy
GetCurrentProcessId
HeapAlloc
EnumSystemLocalesA
GetStdHandle
WideCharToMultiByte
GetModuleHandleA
TlsFree
LCMapStringW
SetLocaleInfoA
VirtualProtect
GetSystemInfo
LCMapStringA
GetEnvironmentStrings
IsValidLocale
TlsSetValue
EnterCriticalSection
GetVersionExA
CompareStringW
GetPrivateProfileStructA
ExitProcess
GetTickCount
CompareStringA
LeaveCriticalSection
HeapFree
GetLocaleInfoA
GetModuleFileNameA
IsBadWritePtr
LoadLibraryA
QueryPerformanceCounter
GetLastError
VirtualAlloc
WaitNamedPipeW
GetDateFormatA
VirtualQuery
GetCurrentProcess
TerminateProcess
GetCurrentThreadId
RtlUnwind
GetLocaleInfoW
GetStringTypeA
GetTimeZoneInformation
WriteFile
CreateNamedPipeW
SetHandleCount
GetEnvironmentStringsW
GetSystemTimeAsFileTime
GetOEMCP
GetACP
GetComputerNameW
GetStartupInfoA
GetStringTypeW
FreeEnvironmentStringsW
VirtualFree
UnhandledExceptionFilter
IsValidCodePage
FreeEnvironmentStringsA
GetTimeFormatA
GetFileType
DeleteCriticalSection
MultiByteToWideChar
GetCPInfo
GetUserDefaultLCID
ReadConsoleOutputA
InterlockedExchange
HeapSize
HeapCreate

comdlg32

ChooseColorW
ReplaceTextW
GetOpenFileNameA
PageSetupDlgW
GetSaveFileNameA
ChooseFontA
ChooseColorA
GetFileTitleA
PrintDlgA

Sections

.text
Size: 122KB - Virtual size: 122KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 136KB - Virtual size: 167KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a0f65be0df43b2f37d324ea652ef162e

Headers

File Characteristics

Imports

kernel32

comdlg32

Sections

.text Size: 122KB - Virtual size: 122KB

.data Size: 136KB - Virtual size: 167KB

.rsrc Size: 9KB - Virtual size: 9KB

.text
Size: 122KB - Virtual size: 122KB

.data
Size: 136KB - Virtual size: 167KB

.rsrc
Size: 9KB - Virtual size: 9KB