2e5dd4ce9b606fca46d633243b3a6773_JaffaCakes118

General

Target

2e5dd4ce9b606fca46d633243b3a6773_JaffaCakes118
Size

31KB
MD5

2e5dd4ce9b606fca46d633243b3a6773
SHA1

a8343b2f87dedefaaa7bc44e2e8e56f493b73824
SHA256

f09a259e237cd3acd896f1f6f40960eab3eb14fe9d73aa4b5d5dd497b9468d56
SHA512

37f667cac3f4344c4c00ab37b0fe3a19ce371af0559fddd815115d27a3f1a170f71fcc5b5aef9b9db9e3490cc65c78d4a8e51374a6eedd9e99e3c1b3420d6803
SSDEEP

384:i7U3DNzcgLG2SCi3jQwEJ8Fo+OaTzEla774LA00OdXTHJGHhyQQId1/VXOI:i+DKTFC5VeffEe7N00OXTHJYdQId1s

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2e5dd4ce9b606fca46d633243b3a6773_JaffaCakes118

Files

2e5dd4ce9b606fca46d633243b3a6773_JaffaCakes118
.exe windows:49941 windows x86 arch:x86

509b1e3e736e0d27b7146c7dd8740beb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetEvent
MultiByteToWideChar
WideCharToMultiByte
ReadFile
GetTickCount
lstrcpyW
SetLastError
MultiByteToWideChar
VirtualAlloc
GetCommandLineW
VirtualAlloc
MultiByteToWideChar
DeleteCriticalSection
FreeLibrary
GetCommandLineA
GetACP
HeapReAlloc
VirtualAlloc
GetStartupInfoW
GetModuleHandleW
GetCurrentProcess
lstrcpyW
LocalFree
CloseHandle
MultiByteToWideChar
GetModuleFileNameA
GetModuleHandleA
GetModuleFileNameA
LeaveCriticalSection
TerminateProcess
LoadLibraryA
SetLastError
LoadLibraryA
GetStartupInfoA
WideCharToMultiByte
SetLastError
WideCharToMultiByte
ReadFile
HeapReAlloc
GetTickCount
InterlockedDecrement
GetCurrentThreadId
lstrlenW
GetStartupInfoA
GetCurrentProcess
SetEvent
HeapFree
UnhandledExceptionFilter
HeapDestroy
CloseHandle

user32

GetWindowLongW
MapWindowPoints
DestroyWindow
SetDlgItemTextW
IsDialogMessageW
GetWindowLongW
PtInRect
ScreenToClient
IsWindowVisible
LoadCursorW
LoadImageW
PostQuitMessage
LoadAcceleratorsW
IsDialogMessageW
PostQuitMessage
MessageBoxA
SendMessageA
DestroyMenu
DestroyMenu
LoadIconW
LoadAcceleratorsW
GetSysColor
SetRect
ReleaseCapture
LoadCursorW
GetMessageW
LoadCursorW
GetParent
GetSysColor
GetDlgItemTextW
GetWindowRect
BeginPaint
GetDlgCtrlID
GetCursorPos

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

509b1e3e736e0d27b7146c7dd8740beb

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 12KB - Virtual size: 12KB

.data Size: 5KB - Virtual size: 16KB

.rdata Size: 2KB - Virtual size: 4KB

.rsrc Size: 10KB - Virtual size: 12KB

.text
Size: 12KB - Virtual size: 12KB

.data
Size: 5KB - Virtual size: 16KB

.rdata
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 10KB - Virtual size: 12KB