2d77fa970c1114fe4f8cad77bd2fc786_JaffaCakes118

General

Target

2d77fa970c1114fe4f8cad77bd2fc786_JaffaCakes118
Size

268KB
MD5

2d77fa970c1114fe4f8cad77bd2fc786
SHA1

253049c5c4f6caf4e69b7fb1dd5443c09de06a4a
SHA256

9918bd63ca4e830a2be72ca8c3ffad51048e120708742bc61d7c51ce83b6ad18
SHA512

774941817d5eecf6a5d87a49228e7deb6cc2326485e7c4fe9d7f8c6719452b666ce9df1297b5f7da9ee786db6bc741f4905de4196ac03b53999a725c1aa57075
SSDEEP

6144:uxCCrR4A1Y3I8hcFTPUnK7sHzzFgrWUknS5kykH2Gbg6E:+rt4QY48hQLUnw+zFgahnS5OWGMT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2d77fa970c1114fe4f8cad77bd2fc786_JaffaCakes118

Files

2d77fa970c1114fe4f8cad77bd2fc786_JaffaCakes118
.exe windows:4 windows x86 arch:x86

022006eccb65e4e9aa829da4ec2d92a6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

WSARecvDisconnect
socket

kernel32

GetCurrentProcessId
GetTickCount
LoadLibraryA
GetModuleHandleA
FlushFileBuffers
CloseHandle
HeapValidate
IsBadReadPtr
GetCommandLineA
HeapFree
GetVersionExA
HeapAlloc
GetProcessHeap
GetStartupInfoA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetModuleFileNameW
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
FatalAppExitA
GetModuleFileNameA
GetLastError
HeapReAlloc
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
InterlockedIncrement
InterlockedDecrement
GetProcAddress
ExitProcess
GetACP
GetOEMCP
GetCPInfo
TlsGetValue
TlsAlloc
TlsSetValue
GetCurrentThreadId
TlsFree
SetLastError
QueryPerformanceCounter
GetSystemTimeAsFileTime
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
WriteFile
SetFilePointer
GetConsoleCP
GetConsoleMode
DebugBreak
OutputDebugStringA
WriteConsoleW
OutputDebugStringW
LoadLibraryW
InitializeCriticalSection
RtlUnwind
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
RaiseException
CreateFileA

user32

wsprintfA
wvsprintfA

Sections

.text
Size: 116KB - Virtual size: 113KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 104KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

022006eccb65e4e9aa829da4ec2d92a6

Headers

File Characteristics

Imports

ws2_32

kernel32

user32

Sections

.text Size: 116KB - Virtual size: 113KB

.rdata Size: 32KB - Virtual size: 29KB

.data Size: 12KB - Virtual size: 15KB

.rsrc Size: 104KB - Virtual size: 102KB

.text
Size: 116KB - Virtual size: 113KB

.rdata
Size: 32KB - Virtual size: 29KB

.data
Size: 12KB - Virtual size: 15KB

.rsrc
Size: 104KB - Virtual size: 102KB