3246ee9609114a06a8de7e94088aaf6f_JaffaCakes118

General

Target

3246ee9609114a06a8de7e94088aaf6f_JaffaCakes118
Size

41KB
MD5

3246ee9609114a06a8de7e94088aaf6f
SHA1

61c671ca1ec288c27f237f717ae9c48dcbe8021c
SHA256

5d3a1b53156480d66d88c281b4241883a9bcb26e71bdedda802436610982734f
SHA512

fffecc6e94f6d10175a88e8727443614c37e14b9783ed828cc692758087ec9eb289d091ecac414b91723210cb19d2cf180d93b38c16b6aacd9659b6af4ec9b93
SSDEEP

384:L3QCzKFuaAtELTVidfpmSEQubHMpcxmlnVaB19ZyQlCH/dBal:DQbAjuVihpLEpzMz+XZAH/Lal

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3246ee9609114a06a8de7e94088aaf6f_JaffaCakes118

Files

3246ee9609114a06a8de7e94088aaf6f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f96ad05313eedbe90f2db1c7c6f34059

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
ReleaseMutex
GetLastError
CreateMutexA
WriteFile
Sleep
WideCharToMultiByte
lstrlenW
FreeLibrary
GetProcAddress
LoadLibraryA
GetLocalTime
CreateThread
GetComputerNameA
GetCurrentThreadId
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
IsBadWritePtr
HeapReAlloc
VirtualAlloc
HeapAlloc
VirtualFree
HeapCreate
HeapDestroy
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
RtlUnwind
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
HeapFree
GetCPInfo
GetACP
GetOEMCP

user32

EnumChildWindows
GetClassNameA
wsprintfA
RegisterWindowMessageA
SendMessageTimeoutA
GetWindowTextA
GetForegroundWindow
GetInputState
PostThreadMessageA
GetMessageA
TranslateMessage
DispatchMessageA
SendMessageA

ole32

CoInitialize

oleaut32

VariantClear
SysFreeString

wininet

InternetCloseHandle
HttpSendRequestA
InternetConnectA
InternetOpenA
HttpOpenRequestA

shlwapi

StrStrIA

Sections

.text
Size: 41KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f96ad05313eedbe90f2db1c7c6f34059

Headers

File Characteristics

Imports

kernel32

user32

ole32

oleaut32

wininet

shlwapi

Sections

.text Size: 41KB - Virtual size: 40KB

.text
Size: 41KB - Virtual size: 40KB